Design Factors: Threat Landscape and Compliance
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
Already have an account? Sign In »
3 hours 43 minutes
let's move on to design factors of threat, landscape and compliance.
In this video, we're going to talk about threat, landscapes and compliance as design factors.
The threat landscape of your organization is another design factor that will be utilized when designing your governance program.
Your organization will need to do some form of threat modeling or assessment to see the current threat landscape that affects your I T systems.
It can be a simple as reporting normal threat levels or threat levels that are average for your industry organization size, geopolitical situation, etcetera,
high threat levels or a high threat environment can be for enterprises that find themselves in an unstable geopolitical situation or an industry that is frequented with cyber attacks. Like financial institutions,
you will have to evaluate whether you face normal threat levels, high threat levels or lower than average threat levels,
and then include that in your design.
If you have a high threat environment, then that is an important aspect or factor that you need to include in your governance program.
Ultimately, you want to protect your I t resource is and your information in this situation,
consider what threats you face as an organization.
What assets do you have at risk? And what are those threats?
Another design factor. Will it that will influence your governance program will be compliance requirements.
Compliance with laws, regulations and standards is essential.
Consider what compliance requirements your organization is subject to
Do. You do business with credit cards? Do you have to comply with P. C. I. D. S s?
Are you in the health care industry
and you're probably subjected to hip hop?
Do you do business with Europe and are subject of GDP Are
determine what compliance requirements affect your organization. And then from there, raped. Um,
an example of a rating system would be low compliance requirements or a minimal set of requirements,
meaning that you don't have that many laws that dictate how you do business.
On the other hand, high compliance requirements means you have a higher than average set of requirements like being obligated to comply with hippo requirements.
Compliance requirements are necessary to factor in your governance design.
What laws and regulations are you forced to comply with, depending on your industry, state location, etcetera?
In this video, we covered the to design factors, a threat, landscape and compliance requirements