BlackNight Cyber brings us some valuable information on how to avoid some of the high cost of top dollar penetration testers. Some of their competition may not like the free advice they give on todays show, but I think you will enjoy it. Today's guest Josh Stinson and Jeramie Crabtree, tell us to "stop and do these top 10 things" before calling that high priced penetration tester.
1) Know your business risks and identify your information crown jewels
2) Identify basic vulnerabilities using free version of Nessus
3) Identify what regulation is related to your business and how do you stand vs required thresholds.
4) Check that you do not use default Logins on: cameras, printers, routers, wireless networks
5) Determine if you use older Operating systems that are not supported by Microsoft: Vista or older will cause large amounts of time spent making penetration testing reports
6) Check for unknown wireless access points
7) Know your plan for "bring your own device" (BYOD)
8) Have an employee connected, informed, and attending CISO organization events
9) Connect with and attend local ISSA Chapter, ISC2 or NCC events
10) Subscribe to Cyberwire, HackFive, New Cyber Frontier, or other Cyber education series
We thank both of our guest and company BlackNight for the valuable direction on do-it-yourself actions to save us all some valuable resources.
Visit our sponsors:
Cyber Resilience Institute
Internet Broadcasting Network
Logic Central Online
Storage Networking Industry Association
National Cybersecurity Center
NCF-266 Reduced Business Cost by Sharing a CISO
NCF-CO20 Economic Development and Military Programs
NCF-265 Predicting Future Malicious Activity On The Dark Web
NCF-264 Introducing New Host Tim Montgomery
NCF-263 Levels of Required Security Architecture for Businesses
NCF-262 Problem solving and Application Security
NCF-261 Becoming a Leader for Cybersecurity
NCF-260 How to Find The Next Big Cyber Product
NCF-259 Marketing Cybersecurity and Asking The Right Questions
NCF-258 FBI and Cybercrime Prevention
NCF-257 Not Enough People: Cyber Operations Need To Automate
NCF-256 Us Army Reaches out for Industry Partnerships
NCF - 255 Where Are The Jobs And Money People?
NCF-254 Who owns your Content On Social Media?
NCF-253 Blockchain's Future in Cybersecurity
NCF-252 Cyberwar to Stop Election Hijacks and Misinformation
NCF-251 Blockchain Technology and The Future of Cybersecurity
NCF-250 Becoming An Entrepreneur In Cybersecurity
NCF-249 How important is industrial cybersecurity?
NCF-248 Data Forensics and Cyber Education
Create your
podcast in
minutes
It is Free
The Commercial Edge: Unleash the Power of People
The emPOWERed Half Hour
NABOR® TALKS
U.S Property Podcast
Aligned Money Show
The Ramsey Show
Planet Money