What methodologies or frameworks (like NIST CSF, CMMC, etc.) are you using to assess and track your cybersecurity maturity level?

Security & GRCStrategy & ArchitectureManagement Tools+6 more
43k views22 Upvotes61 Comments
Sort By:
Oldest
Data Scientist in Consumer Goodsa year ago
we use CSF to assess and track cybersecurity maturity level
1
IT Manager in Manufacturinga year ago
We are held to NIST 800-171, DFARS, ITAR and now CMMC. But our primary focus is NIST 800-171 as that is know, CMMC is not settled currently and is highly based on NST 800-171. 
1
IT Manager in Services (non-Government)a year ago
For a small organisation like us we mainly make use of the standard Azure tools, user training, partner's own tools and a rock solid backup service. Of course, continuous assessment and review of this is also useful.
1
lock icon

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

  • Peer Discussions and Polls
  • One-Minute Insights
  • Connect with like-minded individuals
Cloud Solutions Architect in IT Servicesa year ago
We do use NIST framework for assessing security aspect of our Cloud Services. Our preferred cloud provider is AWS and they already have implemented NIST standards for most of their services.
1
IT Manager in Telecommunicationa year ago
We use a mix of NIST CSF and ISO27001 for compliance, but not to reach any certification yet.

Content you might like

Who will WIN Generative AI Future (GPT/ChatGPT)?

Data & AnalyticsDisruptive & Emerging TechnologiesEnd-User Services & Collaboration+1 more

Open AI (Game Changer: adoption w/ChatGPT)41%

Google (Game Changer: inventor of Transformers, Bard)19%

Microsoft (Game Changer: real time BingGPT+Search plus enterprise enablement)19%

Meta (Game Changer: LLM that can run on single GPU)6%

Amazon (Game Changer: TBD)4%

X.AI / Elon Musk (Game Changer: TBD)3%

Baidu (Chinese tech giant, with GPT version released in March)2%

Someone completely new6%

View Results
46.7k views49 Upvotes15 Comments

We are a large manufacturing company with over 17,000 associates, about half of whom have company-provided cell phones. We average two lost devices per week, which seems low, but executive management is concerned and wants to know if our numbers are typical compared to other companies. My questions are: 1. Do other companies also struggle with lost or stolen devices? 2. What is the average number of lost devices per week? 3. Are there repercussions for associates who lose devices due to carelessness or negligence?

Mobile Device Management (MDM)Mobile DevicesSecurity+2 more
VP of IT in Retail3 days ago
My previous organization implemented a strict one-strike policy for lost or damaged devices. While the first incident was considered an accident, repeat offenders were required to reimburse the company for the lost or damaged ...read more
82 views1 Comment

Will rising cloud costs lead to a reverse migration, from cloud to on-prem?

CloudCost OptimizationInfrastructure
Director IT | CTO Office | Digital Factory / Industry 4.0 in Hardware2 years ago
I don't think rising costs will make people migrate back to on-prem because they're too  invested. If you're already in the cloud, you would have to bring everything down and set up an on-prem environment, which ...read more
2 Replies
Read More Comments
3.2k views11 Comments

What is your primary deciding factor in adopting enterprise search?

Strategy & ArchitectureCloudEnd-User Services & Collaboration+26 more

TCO19%

Pricing26%

Integrations21%

Alignment with Cloud Provider7%

Security10%

Alignment with Existing IT Skills4%

Product / Feature Set7%

Vendor Relationship / Reputation

Other (comment)

View Results
5.7k views3 Upvotes1 Comment

I am trying to understand what are the key skills on the ground that would be pivotal for moving our company to a digital first organization? Have you trialed anything in your organization? What are the skills and trainings you recommend that would be beneficial for the CDIO function at a high level to at least be prepared for the digital disruption in the next two years?

Process Management
Banking Platform Transformation Lead in Finance (non-banking)8 days ago
 Not knowing the current state of your organization, it is difficult to say definitively what skills and training are required for the CDIO function. However, based on my experience of working on multiple digital transformation ...read more
1
Read More Comments
1.6k views7 Comments