Module Summary
Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Already have an account? Sign In »
Time
5 hours 58 minutes
Difficulty
Intermediate
CEU/CPE
6
Video Transcription
00:00
>> Welcome back to Cybrary,
00:00
is of course, I'm your instructor, Brad Rhodes.
00:00
Well, we have completed Module 9, key NIST standards.
00:00
What are we going to cover in this video,
00:00
we're going to go back
00:00
through those key NIST publications
00:00
that we touched on and
00:00
highlight some areas of importance.
00:00
Here are the six NIST standards that
00:00
we've talked about specifically in this module.
00:00
We've talked about 800-160, two volumes,
00:00
system security engineering, lots of
00:00
processes that are very important
00:00
to you, and the ease of content.
00:00
We've talked to about 853,
00:00
which is a great place to get security controls.
00:00
If you have no idea where to start,
00:00
you have no idea what security controls you need,
00:00
that's where you get them from.
00:00
We talked about NIST Special PUB 888.
00:00
That's the guidelines for sanitization,
00:00
which is directly related to media that we
00:00
saw when we talked about disposal
00:00
>> versus decommissioning.
00:00
>> Obviously, you can clear it,
00:00
you can purge it, and you can destroy it,
00:00
and those are your three areas
00:00
you want to remember there?
00:00
We talked about NIST,
00:00
800-100 and that's
00:00
the Information Security Handbook for managers.
00:00
This is a great review point
00:00
as you're prepping for the ASEP exam.
00:00
But the other thing you want to
00:00
remember that came out of that
00:00
was the training where we start with awareness,
00:00
and then we get to training,
00:00
and then we get to education.
00:00
The fact that we need to do
00:00
a better job of helping our users be aware and trained
00:00
and make them those
00:00
first-line of defense for our cybersecurity and
00:00
InfoSec systems so that we
00:00
actually trust our users versus what we do today.
00:00
We've talked about the NIST Cybersecurity Framework
00:00
and the five pieces to that.
00:00
Really important to know that one,
00:00
lots of things we've done as
00:00
an ISA throughout the SE domains,
00:00
the SE process,
00:00
and SDLC that you
00:00
can tie directly into the NIST Cybersecurity Framework.
00:00
Then finally, we covered NIST
00:00
special or excuse me, [LAUGHTER] FIPS PUB.
00:00
Not an MIS PUB yet, it will be soon enough.
00:00
But FIPS PUB 140-2,
00:00
and that's the security requirements
00:00
for cryptographic modules.
00:00
This is more of a discussion of those physical modules.
00:00
But a lot of the principles that we do in FIPS
00:00
140-2 can also be applied
00:00
to the digital or online cryptographic
00:00
>> systems that we see.
00:00
>> What did we cover in this video?
00:00
We reviewed the key NIST documents
00:00
that we've talked about throughout
00:00
our module and time together here in Module 9.
00:00
We're going to move on now to Module 10 and talk about
00:00
the ASEP concentration and help
00:00
you to be prepared for the exam.
00:00
We'll see you next time.
Up Next
Similar Content
