Hi Bruce, I am studying for the new IT section of the Certified Public Accountant (CPA) exam. I have limited background in formal IT education since I was an accounting major. The CPA Exam Section ISC discusses Cybersecurity and the corresponding Data Stds, Regulations, and Frameworks A lot of videos that discuss NIST use fancy vocabulary assuming that most members of the audience already know the fundamentals; you tend to get lost in the advanced English jargon. I've already seen your NIST CSF podcast video; it was really beneficial for someone like me who knows nothing about cybersecurity. I am not required to go in depth since its extensive knowledge "mile long; inch deep" of concepts. Without your NIST podcast, I would've needed to watch 5 supplemental videos to understand one main supplemental video that aided in understanding a certain chapter. In my opinion, your discussion was way better than most lectures on here. If you could maybe cover NIST Privacy Framework video, then I would appreciate it.
Hi, we are going to be upgrading an operating system and wondering what controls will be impacted the most because we need to gather artifacts for an assessment
Dec 2019, Revision 4 will be replaced with revision 5 (supposedly). Some departments/agencies will still be using rev4 while they transition. There are still some organizations just getting off DIACAP (which was supposed to be gone YEARS ago).
Great video very informative. What are the NIST overall controls determination languages for Privacy controls assessment? Are they going to be the same as that of Security controls assessment (Pass,fail, satisfied, not satisfied).
Hey Bro, i have networking experience but decided to get into security this year. I currently have CAP, Security +, network plus and CEH. I’m looking to get into Assessment? How do I proceed.
I feel like you could have expanded more past reading the slides. Common presentation gaff - no biggie - but I'd like more in-depth, SME interpretation... just food for thought on your future lessons :)
Hi Bruce, I am looking for a job in Compliance, recently passed CISSP and CISA. I don't have experience but i am sure i will pick up fast. If Bruce or anyone can get me a role, would be appreciated. I am open to relocation anywhere in N east and Midwest.
Helpful but too much postulation and speculation in your chatter - like "I think..." or "maybe there's something in there" etc. Does not seem well rehearsed, you could've take more prep time with this, to resolve your free-form speculation and tighten your focus - could be much tighter and more helpful as an overview if you did.
If you wanna know about cybersecurity, check out my course!
www.nist80037rmf.com/securitycompliancecourses
The information gain from watching this video has given me the inspiration to go into the job market asap. That was in-depth of RMF
I still come back to this video. Thanks
Hi Bruce,
I am studying for the new IT section of the Certified Public Accountant (CPA) exam. I have limited background in formal IT education since I was an accounting major.
The CPA Exam Section ISC discusses Cybersecurity and the corresponding Data Stds, Regulations, and Frameworks
A lot of videos that discuss NIST use fancy vocabulary assuming that most members of the audience already know the fundamentals; you tend to get lost in the advanced English jargon.
I've already seen your NIST CSF podcast video; it was really beneficial for someone like me who knows nothing about cybersecurity. I am not required to go in depth since its extensive knowledge "mile long; inch deep" of concepts. Without your NIST podcast, I would've needed to watch 5 supplemental videos to understand one main supplemental video that aided in understanding a certain chapter. In my opinion, your discussion was way better than most lectures on here.
If you could maybe cover NIST Privacy Framework video, then I would appreciate it.
Just one thing, TLS doesn’t help with XSS attack. ~ 11:50
Hi, we are going to be upgrading an operating system and wondering what controls will be impacted the most because we need to gather artifacts for an assessment
i have only experince in tokenization means application security and i have cloud architecture experience can I become ccsp from India
Great sound.
Thank you, Bruce!
Hey Bruce do you do any interview prep?
I'm new to this, Since Revision 5 is coming out, does NIST 800-53 (rev 4) become obsolete?
Justin Lopez once Revision 5 is official and published then yes Revision 4 is obsolete
Dec 2019, Revision 4 will be replaced with revision 5 (supposedly). Some departments/agencies will still be using rev4 while they transition. There are still some organizations just getting off DIACAP (which was supposed to be gone YEARS ago).
Great video very informative. What are the NIST overall controls determination languages for Privacy controls assessment? Are they going to be the same as that of Security controls assessment (Pass,fail, satisfied, not satisfied).
Olumayowa Ajayi very similar
Great job!
Thanks!
Final Publication is actually March 2019. It's April and still in Draft!
Hey Bro, i have networking experience but decided to get into security this year. I currently have CAP, Security +, network plus and CEH. I’m looking to get into Assessment? How do I proceed.
Hit me up if you haven't heard back from him. I've been working in the field for 22yrs and my info is free. Alicia.Catney@gmail
USAJOBS
@@aliciacatney4229 hey
is it thinkIFic or thinkTIFic?
Hi Bruce, would you have a NIST 800-53 rev 5 control matrix in xlsx
Navid Dave it should be available through the NIST website both in xml and xslx/csv
love this!
I feel like you could have expanded more past reading the slides. Common presentation gaff - no biggie - but I'd like more in-depth, SME interpretation... just food for thought on your future lessons :)
Working on it.
How can I get in touch with you, do you have an email
cyberaware2020 @ gmail
Hi Bruce, I am looking for a job in Compliance, recently passed CISSP and CISA. I don't have experience but i am sure i will pick up fast. If Bruce or anyone can get me a role, would be appreciated. I am open to relocation anywhere in N east and Midwest.
farhancpa look on USAJOBS...all sectors of the federal government need this expertise
@@kuznickic1 I am looking in a Private sector as i am not a US citizen. I am Canadian
If you have a green card you should be able to get federal employment
@@kuznickic1 I don't have a Green Card but i can work under the TN in US. I am looking for a junior level role in the US. Thank you
farhancpa you might want to look in the healthcare industry too
How do you make six figures in IT bruce
Because Bruce counts the 3 figures to the right of the decimal point
You work for the Federal government
Nancy L you’re absolutely correct as I’m federal and the money is in compliance not so much system administration
Helpful but too much postulation and speculation in your chatter - like "I think..." or "maybe there's something in there" etc. Does not seem well rehearsed, you could've take more prep time with this, to resolve your free-form speculation and tighten your focus - could be much tighter and more helpful as an overview if you did.
To be honest, not helpful