SANS ICS 5项关键控制措施提交董事会审议 - Jemenas 5项关键控制措施历程.pdf

1、5 Critical Controls goes to the boardThe energy transition is adding(consumer)tech to the GridMore data centers to do important AI things that will change our livesThreatsRegulation32%of corporate directors are completely satisfied with the information they get on cybersecurity19%of board members sa

2、y their companies have recruited board members with specific cybersecurity and technology skills46%Less than half of board members report receiving consistent,decision-useful reporting from their Chief Information Security Officers(CISOs)154MinutesSlidesYet CISOs get limited time at the board 2021Th

3、e right people translating to the right language9NIST CSFCyber Threat Awareness(TTX)Enhance Remote accessSecure NetworkNetwork visibilityTTX2021:Oct 2022:Lessons LearnedUse threat scenarios/model to tie everything together1.Scenarios are super importantIt always takes longer than you expect,even whe

4、n you take into account Hofstadters Law.Hofstadters Law:2.Its an operational environment,plan for it to take longer3.MFA needs to be phish resistant and loggedBasic MFA is not enough in 2025Aim for FIDO2 or similarLogging and Monitoring to detect session hijacking and token stealingBoard reporting P

5、art 1:Measuring and Reporting on 5 Critical ControlsGet your message acrossContext is KingTell the storyMotivate actionContext:During deployment vs Post deploymentDuring deploymentMostly vibes with a little dataCompleteness is the contextHighly manualMotivation:improving delivery and removing blocke

6、rsIncreased coverage=Reduced RiskPost deploymentMostly data with a few vibesControl Effectiveness is the contextHighly automatedMotivation:improving effectiveness of controls and finding control gapsIncreased effectiveness=Reduced RiskTell the story through metricsDeployment Metricsi.e.controls are