09 Jan Topic 1: Supply Chain Security Risks
Topic 1: Supply Chain Security Risks
The National Institute of Standards and Technology (NIST) notes that cybersecurity in the supply chain is not just an IT problem: it also involves vendors, continuity, transportation, and many other factors requiring careful coordination. Each of these factors has a technical aspect. What would you consider to be some of these technical considerations, and what would you do to better secure them? An example might be poor information security practices by some third-party suppliers. How would you go about mitigating the risk arising from their laxness?
Topic 2: Effective Threat and Incident Management
Effective threat and incident management involves identifying and analyzing threats or incidents in real time. This is intended to give the cybersecurity manager a current view of any incidents occurring within the infrastructure and can encompass anything from an attempted intrusion to a successful exploit. Once an alert has signaled that an incident is in progress, how should the incident response team respond? What steps should be taken for an effective response?
