You aren't really a security professional (or you aren't a mature one at least) until you have dove head first into some security frameworks and learned their ins and outs. The GRC side of the CISO organization is a tough one because the documentation is rough, hard to read, for a lot of people the understanding of it is quite difficult, and then you have to figure out how to structure it in a manner where you can apply it across your organization. In today's episode we discuss security frameworks and what we feel are the pros and cons of each. Get Consulting: http://bit.ly/3R04Lsr OCISO Social Media Podcast: https://spoti.fi/3iuSwYa Twitter: http://bit.ly/3EUkDIG LinkedIn: http://bit.ly/3GIDQOY Website: http://bit.ly/3gwN6uO Facebook: http://bit.ly/3i9Wzsn Sponsorship Request: If you are interested in Sponsoring Office of The CISO Videos Please Email sponsors@officeoftheciso.com Topics Discussed: Cybersecurity Framework NIST 800-53 SOC Type 2 NIST 800-37 NIST 800-39 NIST 7621 HIPAA The Gramm-Leach-Bliley Act Information Security Cybersecurity