))
There’s only so much you can do in a week – or, according to Oliver Burkeman, in the roughly 4,000 weeks the average human lives. Oliver is a journalist and author of the books Four Thousand Weeks: Time Management for Mortals, Meditations for Mortals, and the newsletter “The Imperfectionist.” Chris and Oliver discuss the paradox of why change can only occur once we accept that we might not be able to change. Oliver also shares how life’s mishaps can become our most treasured memories and why sharing your imperfections is an act of generosity. For the full text transcript, visit go.ted.com/BHTranscripts For the full text transcript, visit go.ted.com/BHTranscripts Want to help shape TED's shows going forward? Fill out our survey ! For a chance to give your own TED Talk, fill out the Idea Search Application: ted.com/ideasearch . Interested in learning more about upcoming TED events? Follow these links: TEDNext: ted.com/futureyou Hosted on Acast. See acast.com/privacy for more information.…
Podcasts, die es wert sind, gehört zu werden
GESPONSERT
Podcast by NisteOameni
…
continue reading
Welcome to the Nistar podcast, where amazing things happen.
…
continue reading
Podcast by Daniel Nistico
…
continue reading
Every Saturday, listen to the #NistoBros discuss their weekly episodes of #NistoDrinks and #NistoEats, along with whatever other shenanigans come up throughout the week. The #NistoBros podcast can be found WHEREVER you stream your podcasts from! Videos of the pod can be found on YouTube! Just search #NistoBros and make sure to subscribe🤩https://www.youtube.com/channel/UCZKSoZ3YOVWgBA6vFjOukzQ Follow to watch the weekly episodes of #NistoDrinks and #NistoEats: Instagram: @NistoBros TikTok: @N ...
…
continue reading
Deliberation is essential for the development of new knowledge. The process of unpacking the causes and consequences of an issue lead to active learning and well-thought-out decision making. NISTH seeks to provide a platform for active discussion on dual perspectives, by leading researchers from across disciplines, to explore global challenges outside the box! Join our expert speakers as they discuss and deliberate on the subject contention.
…
continue reading
Framework is your go-to podcast for mastering cybersecurity frameworks, with a special focus on the NIST Cybersecurity Framework (CSF) and NIST 800-53. This series breaks down each function, category, and subcategory to help professionals, educators, and organizations understand their structure and real-world applications. Each episode delivers clear, practical insights with examples that make cybersecurity frameworks more accessible and actionable. Whether you're new to cybersecurity or loo ...
…
continue reading
در این برنامه قصد داریم تا با زندگی انسان هایی آشنا بشیم که چه در گذشته و چه در حال اثری مثبت از خودشون بر جهان ما به جا گذاشتند . هر کدوم از این آدم ها و کار هایی که انجام دادند می تونند الگوی ما باشند برای پیدا کردن هدفمون و ادامه دادن مسیرمون به بهترین شکل ممکن.
…
continue reading
در این برنامه قصد داریم تا با زندگی انسان هایی آشنا بشیم که چه در گذشته و چه در حال اثری مثبت از خودشون بر جهان ما به جا گذاشتند . هر کدوم از این آدم ها و کار هایی که انجام دادند می تونند الگوی ما باشند برای پیدا کردن هدفمون و ادامه دادن مسیرمون به بهترین شکل ممکن.
…
continue reading
1
Curat la cauză - NiștePodcast #375
41:01
41:01
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
41:01
E vară! Păstrați cauza curată! Hai, ne vedem la Electric Castle!Pe 23 iulie venim la Ploiești! Bilete 🎫: https://m.iabilet.ro/bilete-ploiesti-...Pe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipod…
…
continue reading
1
D.M.G. - NiștePodcast #373
52:21
52:21
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
52:21
Salut prieteni! 🏟️ Venim prin toată țara cu cel mai nou și bun stand-up al nostru!🎫Bilete: https://m.iabilet.ro/cauta/?q=niste+oameniPe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipodcast@gmail.c…
…
continue reading
1
TelePenis - NiștePodcast #371
51:20
51:20
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
51:20
Salut prieteni! 🏟️ Venim prin toată țara cu cel mai nou și bun stand-up al nostru!🎫Bilete: https://m.iabilet.ro/cauta/?q=niste+oameniPe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipodcast@gmail.c…
…
continue reading
1
Cel mai râvnit profet - NiștePodcast #369
46:07
46:07
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
46:07
Salut prieteni! 🏟️ Venim prin toată țara cu cel mai nou și bun stand-up al nostru!🎫Bilete: https://m.iabilet.ro/cauta/?q=niste+oameniPe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipodcast@gmail.c…
…
continue reading
1
Podcastul Prostiei - NiștePodcast #367
52:12
52:12
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
52:12
Ne-am întors mai puși pe șotii ca niciodată!Pe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipodcast@gmail.com---Grup Facebook: / 221885682023737 ---Suntem pe: Apple Podcasts:https://podcasts.apple…
…
continue reading
1
Episodul cu Victor Băra - NiștePodcast #364
1:13:19
1:13:19
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
1:13:19
Episodul cu Victor Băra - NiștePodcast #364 by NisteOameniVon NisteOameni
…
continue reading
1
Dreptate pentru Miruna - 🔴 NiștePodcast #363 LIVE
1:58:56
1:58:56
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
1:58:56
Dreptate pentru Miruna - 🔴 NiștePodcast #363 LIVE by NisteOameniVon NisteOameni
…
continue reading
1
Episodul cu Teo - NiștePodcast #360
59:20
59:20
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
59:20
Salut prieteni! 🏟️ Venim prin toată țara cu cel mai nou și bun stand-up al nostru!🎫Bilete: https://m.iabilet.ro/cauta/?q=niste+oameniPe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipodcast@gmail.c…
…
continue reading
1
Pe curând, vulture! - NiștePodcast #358
1:03:24
1:03:24
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
1:03:24
Salut prieteni! 🏟️ Venim prin toată țara cu cel mai nou și bun stand-up al nostru!🎫Bilete: https://m.iabilet.ro/cauta/?q=niste+oameniPe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipodcast@gmail.c…
…
continue reading
1
Limbarița lui Azorel - NiștePodcast #357
56:14
56:14
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
56:14
Limbarița lui Azorel - NiștePodcast #357 by NisteOameniVon NisteOameni
…
continue reading
1
Episodul cu Toma - NiștePodcast #355
1:29:20
1:29:20
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
1:29:20
Salut prieteni! 🏟️ Venim prin toată țara cu cel mai nou și bun stand-up al nostru!🎫Bilete: https://m.iabilet.ro/cauta/?q=niste+oameniPe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipodcast@gmail.c…
…
continue reading
1
Episod de post - NiștePodcast #353
52:49
52:49
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
52:49
Salut prieteni! 🏟️ Venim prin toată țara cu cel mai nou și bun stand-up al nostru!🎫Bilete: https://m.iabilet.ro/cauta/?q=niste+oameniPe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipodcast@gmail.c…
…
continue reading
1
Cuvântul cu G - NiștePodcast #351 (cu Păune)
49:32
49:32
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
49:32
FOCȘANI, GALAȚI, BRĂILA, CONSTANȚA ȘI TULCEA, săptămâna asta venim la voi cu cel mai nou și bun stand-up al nostru! 🎫 Bilete: https://m.iabilet.ro/cauta/?q=niste+o...Pe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți…
…
continue reading
1
Cicliștii Kamikaze - NiștePodcast #348
49:02
49:02
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
49:02
Salut prieteni! 🏟️ Venim prin toată țara cu cel mai nou și bun stand-up al nostru!🎫Bilete: https://m.iabilet.ro/cauta/?q=niste+oameniPe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipodcast@gmail.c…
…
continue reading
1
Ț*țe la p*lă - NiștePodcast #346 (cu Bacea Olaf și Paul Socol)
1:15:14
1:15:14
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
1:15:14
Îi avem astăzi alături de noi pe băieții de la @AMOSTARE pe care i-am invitat la o serată chiar la ei acasă :)Săptămâna asta ne vedem în Cluj, Baia Mare, Oradea și Vâlcea!🎫Bilete: https://m.iabilet.ro/cauta/?q=niste+oameniPe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne …
…
continue reading
1
Niște Podcast #344 | Cazul "Cablul"
48:37
48:37
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
48:37
Salut prieteni! 🏟️ Venim prin toată țara cu cel mai nou și bun stand-up al nostru!🎫Bilete: https://m.iabilet.ro/cauta/?q=niste+oameniPe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipodcast@gmail.c…
…
continue reading
1
Niște Podcast, episodul 342 | Stilul skibidi (cu Duku)
54:32
54:32
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
54:32
Salut prieteni! 🏟️ Venim prin toată țara cu cel mai nou și bun stand-up al nostru!🎫Bilete: https://m.iabilet.ro/cauta/?q=niste+oameniPe Comedy Box ai o grămadă de conținut de comedie de la noi și de la alții. Subscribe! https://www.comedybox.roDacă vreți să ne trimiteți povești, subiecte sau doar vreți să ne spuneți ceva: nisteoamenipodcast@gmail.c…
…
continue reading
1
RC.CO-04 - Sharing Public Recovery Updates
19:04
19:04
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:04
RC.CO-04 involves sharing public updates on incident recovery using approved channels and messaging, such as breach notifications or preventative steps, to inform affected parties or the broader community. This ensures transparency about recovery efforts and future safeguards, maintaining public trust. It addresses external expectations post-incide…
…
continue reading
1
RC.CO-03 - Communicating Recovery Progress
19:19
19:19
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:19
RC.CO-03 ensures recovery activities and progress are shared with designated stakeholders—like leadership and suppliers—consistent with response plans and agreements. This includes regular updates on restoration status, adhering to contractual protocols for information sharing. It keeps all parties informed and aligned during recovery. This subcate…
…
continue reading
1
RC.RP-06 - Declaring Recovery Completion
19:18
19:18
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:18
RC.RP-06 declares the end of recovery once predefined criteria are met, finalizing the process with a comprehensive after-action report detailing the incident, actions, and lessons learned. This formal closure ensures all steps are documented for review and improvement. It marks the return to full normalcy. This subcategory aligns with risk managem…
…
continue reading
1
RC.RP-05 - Confirming System Restoration
18:56
18:56
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:56
RC.RP-05 verifies the integrity of restored assets—checking for lingering threats or root causes—before returning systems to production, confirming normal operations. This involves testing restoration adequacy to ensure functionality and security are fully restored. It finalizes recovery with assurance. This subcategory aligns with risk goals by en…
…
continue reading
1
RC.RP-04 - Restoring Critical Functions Post-Incident
19:15
19:15
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:15
RC.RP-04 considers critical mission functions and cybersecurity risks to define post-incident operational norms, using impact records to prioritize restoration order. This involves collaboration with system owners to confirm successful recovery and monitor performance for adequacy. It ensures recovery aligns with strategic goals. This subcategory a…
…
continue reading
1
RC.RP-03 - Verifying Backup Integrity
18:29
18:29
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:29
RC.RP-03 ensures backups and restoration assets are checked for integrity—free of compromise or corruption—before use in recovery efforts. This verification prevents reintroducing threats or using unreliable data, safeguarding the restoration process. It guarantees a clean starting point for recovery. This subcategory aligns with risk management by…
…
continue reading
1
RC.RP-02 - Prioritizing Recovery Actions
19:15
19:15
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:15
RC.RP-02 involves selecting, scoping, and prioritizing recovery actions based on incident response plan criteria and available resources, adapting as needs shift. This ensures efforts focus on critical systems first, balancing speed with effectiveness in execution. It operationalizes recovery with precision. This subcategory aligns actions with ris…
…
continue reading
1
RC.RP-01 - Launching Incident Recovery Efforts
18:02
18:02
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:02
RC.RP-01 initiates the recovery phase of the incident response plan once triggered, ensuring all responsible parties are aware of their roles and required authorizations. This begins during or after containment, focusing on restoring affected systems and services systematically. It transitions the organization from response to recovery. This subcat…
…
continue reading
1
RS.MI-02 - Eradicating Incident Threats
18:38
18:38
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:38
RS.MI-02 ensures incidents are fully eradicated, removing threats like malware or unauthorized access through automated system features or manual responder actions. This can involve third-party support, such as MSSPs, to eliminate root causes and residual risks. It restores systems to a secure state. This subcategory aligns eradication with risk go…
…
continue reading
1
RS.MI-01 - Containing Cybersecurity Incidents
18:09
18:09
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:09
RS.MI-01 focuses on containing incidents to prevent their expansion, using automated tools like antivirus or manual actions by responders to isolate threats. This can involve third-party assistance (e.g., ISPs) or redirecting compromised endpoints to remediation VLANs, limiting damage. It stops incidents from spreading further. This subcategory ali…
…
continue reading
1
RS.CO-03 - Sharing Information with Stakeholders
20:00
20:00
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
20:00
RS.CO-03 involves sharing incident information with designated stakeholders—both internal, like leadership, and external, like ISACs—consistent with response plans and agreements. This includes voluntary sharing of anonymized attack data or updates on insider threats with HR, enhancing situational awareness. It ensures relevant parties stay informe…
…
continue reading
1
RS.CO-02 - Notifying Stakeholders of Incidents
18:55
18:55
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:55
RS.CO-02 ensures timely notification of internal and external stakeholders—like customers, partners, or regulators—about incidents, following breach procedures or contractual obligations. This includes notifying law enforcement when criteria and approvals dictate, maintaining transparency and compliance. It keeps affected parties informed and engag…
…
continue reading
1
RS.AN-08 - Assessing Incident Magnitude
19:10
19:10
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:10
RS.AN-08 estimates and validates an incident’s magnitude by assessing its scope and impact, searching other targets for indicators of compromise or persistence. This involves manual reviews or automated tools to confirm the extent of damage or spread, refining initial assessments. It quantifies the incident’s true reach. This subcategory aligns ana…
…
continue reading
1
RS.AN-07 - Preserving Incident Data Integrity
19:08
19:08
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:08
RS.AN-07 focuses on collecting and preserving incident data and metadata—such as source and timestamps—using chain-of-custody procedures to ensure integrity. This comprehensive gathering supports forensic analysis and compliance, protecting evidence from alteration. It ensures data remains a trustworthy resource for investigation. This subcategory …
…
continue reading
1
RS.AN-06 - Recording Investigation Actions
18:57
18:57
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:57
RS.AN-06 ensures that all investigative actions during an incident—like system checks or containment steps—are meticulously recorded, with integrity and provenance preserved. This involves immutable logs by responders and detailed documentation by the incident lead, safeguarding evidence for legal or audit purposes. It maintains a reliable investig…
…
continue reading
1
RS.AN-03 - Investigating Incident Causes
18:21
18:21
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:21
RS.AN-03 conducts detailed analysis to reconstruct incident events, identify involved assets, and pinpoint root causes, such as exploited vulnerabilities or threat actors. This includes examining deception technologies for attacker behavior insights, aiming to understand both immediate triggers and systemic issues. It provides the foundation for ef…
…
continue reading
1
RS.MA-05 - Initiating Incident Recovery
18:40
18:40
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:40
RS.MA-05 applies predefined criteria to determine when to shift from response to recovery, based on incident characteristics and operational considerations. This decision balances containment success with potential disruptions from recovery actions, ensuring a smooth transition. It marks the pivot to restoring normalcy. This subcategory aligns reco…
…
continue reading
1
RS.MA-04 - Escalating Incidents When Needed
19:39
19:39
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:39
RS.MA-04 ensures incidents are escalated or elevated to higher levels of authority or expertise when their complexity or impact exceeds initial handling capabilities. This involves tracking incident status and coordinating with designated stakeholders, both internal and external, for additional support. It maintains control over evolving incidents.…
…
continue reading
1
RS.MA-03 - Categorizing and Prioritizing Incidents
19:45
19:45
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:45
RS.MA-03 categorizes incidents—such as ransomware or data breaches—and prioritizes them based on scope, impact, and urgency, balancing rapid recovery with investigation needs. This detailed review assigns incidents to specific response strategies, ensuring appropriate resource allocation. It organizes chaos into actionable steps. This subcategory a…
…
continue reading
1
RS.MA-02 - Triaging and Validating Incident Reports
19:00
19:00
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:00
RS.MA-02 involves triaging and validating incident reports to confirm their cybersecurity relevance and need for response, applying severity criteria to prioritize action. This preliminary review filters out non-issues, ensuring resources focus on genuine threats like breaches or malware. It streamlines the initial handling of reported events. This…
…
continue reading
1
RS.MA-01 - Executing the Incident Response Plan
18:51
18:51
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:51
RS.MA-01 initiates the execution of the incident response plan in coordination with third parties—like outsourcers or suppliers—once an incident is confirmed. This includes designating an incident lead and activating additional plans (e.g., business continuity) as needed to support response efforts. It ensures a structured, collaborative approach t…
…
continue reading
1
DE.AE-08 - Declaring Incidents Based on Criteria
20:00
20:00
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
20:00
DE.AE-08 involves declaring incidents when adverse events meet predefined criteria, such as severity or scope, ensuring a formal response is triggered. This process accounts for known false positives to avoid unnecessary escalation, applying criteria to event characteristics systematically. It marks the transition from detection to response. This s…
…
continue reading
1
DE.AE-07 - Enhancing Analysis with Threat Intelligence
19:23
19:23
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:23
DE.AE-07 integrates cyber threat intelligence and contextual data—like asset inventories or vulnerability disclosures—into adverse event analysis to enhance accuracy and relevance. This involves securely feeding intelligence to detection technologies and personnel, enabling rapid analysis of supplier or third-party advisories. It enriches understan…
…
continue reading
1
DE.AE-06 - Sharing Adverse Event Information
19:37
19:37
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:37
DE.AE-06 ensures that information about adverse events is promptly shared with authorized staff—such as SOC teams and incident responders—and integrated into response tools. This includes generating alerts, assigning tickets in ticketing systems, and providing access to analysis findings at all times. It enables swift, coordinated action against de…
…
continue reading
1
DE.AE-04 - Estimating the Impact of Adverse Events
19:31
19:31
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:31
DE.AE-04 estimates the impact and scope of adverse events to gauge their potential harm, using tools like SIEMs or manual analysis to assess affected assets and severity. This process refines initial estimates through review, ensuring a clear understanding of consequences like data loss or downtime. It informs prioritization of response efforts. Th…
…
continue reading
1
DE.AE-03 - Correlating Data from Multiple Sources
19:09
19:09
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:09
DE.AE-03 correlates information from diverse sources—like logs, sensors, and threat intelligence—to build a unified picture of potential adverse events. This involves consolidating log data into centralized servers and using event correlation tools (e.g., SIEM) to identify patterns or connections. It enhances detection by linking disparate clues in…
…
continue reading
1
DE.AE-02 - Analyzing Adverse Events for Insights
18:44
18:44
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:44
DE.AE-02 focuses on analyzing potentially adverse events to understand their nature, using tools like SIEM systems to examine log events for malicious or suspicious activity. This includes leveraging cyber threat intelligence to characterize threat actors, tactics, and indicators of compromise, supplemented by manual reviews where automation falls …
…
continue reading
1
DE.CM-09 - Detecting Threats Across Technology Stacks
20:08
20:08
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
20:08
DE.CM-09 involves monitoring hardware, software, runtime environments, and associated data to detect adverse events like malware, phishing, or tampering. This includes tracking authentication attempts, configuration changes, and endpoint health to identify risks such as unauthorized software or credential attacks. It ensures a deep, system-level vi…
…
continue reading
1
DE.CM-06 - Monitoring External Service Providers
19:10
19:10
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
19:10
DE.CM-06 requires monitoring the activities and services of external providers—like cloud platforms or ISPs—to detect adverse events that could impact the organization. This includes tracking remote administration or onsite maintenance by third parties for deviations from expected behavior. It ensures external dependencies don’t become blind spots.…
…
continue reading
1
DE.CM-03 - Tracking Personnel and Technology Usage
18:37
18:37
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:37
DE.CM-03 monitors personnel activity and technology usage to identify potentially adverse events, such as insider threats or policy violations, using tools like behavior analytics and access logs. This includes tracking unusual access patterns or interactions with deception technologies, like honeypot accounts, to detect malicious intent. It focuse…
…
continue reading
1
DE.CM-02 - Watching the Physical Environment for Threats
18:30
18:30
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:30
DE.CM-02 involves monitoring the physical environment housing technology assets to detect adverse events, such as unauthorized access or tampering with controls like locks and alarms. This includes reviewing logs from badge readers and visitor records for unusual patterns, supplemented by tools like cameras and security guards. It protects the phys…
…
continue reading
1
DE.CM-01 - Monitoring Networks for Adverse Events
18:06
18:06
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:06
DE.CM-01 focuses on continuously monitoring networks and network services, such as DNS and BGP, to detect potentially adverse events like unauthorized connections or traffic anomalies. This involves comparing real-time network flows against established baselines to identify deviations that could signal a security threat. It ensures visibility into …
…
continue reading
1
PR.IR-04 - Maintaining Resource Capacity for Availability
18:03
18:03
Später Spielen
Später Spielen
Listen
Gefällt mir
Geliked
18:03
PR.IR-04 maintains sufficient resource capacity—storage, compute, power, and bandwidth—to ensure system availability, monitoring usage and forecasting needs. This proactive scaling prevents performance bottlenecks or failures that could disrupt operations. It aligns capacity planning with risk and resilience objectives. This subcategory supports un…
…
continue reading
