The Foundation for Risk-Informed Cybersecurity In cybersecurity, context is everything. That’s the message behind GV.OC – Organizational Context, one of the six Categories under the new Govern (GV) Function in NIST CSF 2.0. It recognizes that cybersecurity strategies are only effective when they reflect the environment in which an organization operates—its mission, stakeholders, legal obligations, […]
GV.OC – Organizational Context Read More »
Understanding the New “Govern” (GV) Function in NIST CSF 2.0 When NIST released the Cybersecurity Framework (CSF) 2.0, one of the most notable changes was the introduction of a sixth core function: Govern (GV). While the original CSF focused on technical and operational activities, Identify, Protect, Detect, Respond, and Recover—the addition of Govern reflects a
NIST CSF 2.0 – Govern (GV) Read More »
Navigating NIST CSF 2.0: What’s New, What Matters, and How to Get Started The release of the NIST Cybersecurity Framework (CSF) 2.0 marks a significant milestone in the evolution of cybersecurity risk management. Nearly a decade after the original framework’s debut, this latest version introduces critical updates designed to make the framework more actionable, inclusive,
NIST Cybersecurity Framework (CSF) 2.0 Read More »
Cybersecurity is more critical than ever in today’s increasingly digital world. With cyber threats becoming more sophisticated, organizations must prioritize robust security frameworks to safeguard their data and maintain trust with clients.From the implementation of Zero Trust models to enhancing SIEM log management, to ensuring people, process, and technology are updated against threats, the goal
Cybersecurity Thoughts Read More »
As we close out 2024, it’s a great time to reflect on the strides made in cybersecurity and the challenges that continue to shape the field. This year has underscored the critical importance of proactive defense strategies, robust incident response capabilities, and the relentless pursuit of innovation to stay ahead of evolving threats. Some key
What are some lessons learned from the CrowdStrike outage? The CrowdStrike outage affected millions of people and systems. It taught us some valuable lessons to weather the next storm. To their credit, CrowdStrike found the issue quickly, turned around a fixed version of their update, and assisted customers affected with guidance and information on recovering.
CrowdStrike Outage Lessons Read More »
01760 – Natick, Massachusetts Exploring Natick, Massachusetts: A Charming New England Town My name is William Tulaba and I am from Natick, Massachusetts. Here you will find some information about my favorite hometown. A Brief history Vibrant Downtown Natural Beauty Educational Excellence Community and Culture Shopping and Dining Accessibility Conclusion More Information links A Brief History:
Natick, Massachusetts Read More »
Home About Me Contact Us Some certification I have received over the last few years in InfoSec. You can verify the CISSP certification from the ISC2 website: ISC2.org You have to enter Tulaba and 782475 and click “search”. William Tulaba will come up with verification information. Certifications ISC2 – CISSP Certification: 782475 Rapid7 – InsightVM
Home Information Security / Cybersecurity What do Star Wars and cybersecurity have in common? More than you would think. I came across a post on social media that made a joke about Star Wars episode IV: A new hope being about a data breach and it got me thinking about the broader franchise and looking
Star Wars and Cybersecurity Read More »
