Выпусков: 335

The SEI Podcast Series presents conversations in software engineering, cybersecurity, and future technologies.

Software Engineering Institute (SEI) Podcast Series Carnegie Mellon University

    • Технологии

The SEI Podcast Series presents conversations in software engineering, cybersecurity, and future technologies.

    VINCE: A Software Vulnerability Coordination Platform

    VINCE: A Software Vulnerability Coordination Platform

    To scale communications and increase collaboration between vulnerability reporters, coordinators, and software vendors, the CERT/CC team has created a web-based platform for software vulnerability reporting and coordination, the Vulnerability Information and Coordination Environment (VINCE). Emily Sarneso, the architect of VINCE, and Art Manion, technical manager of the Vulnerability Analysis Team in the SEI’s CERT Division, discuss how to use VINCE and future work in vulnerability coordination.

    • 38 мин.
    Work From Home: Threats, Vulnerabilities, and Strategies for Protecting Your Network

    Work From Home: Threats, Vulnerabilities, and Strategies for Protecting Your Network

    Phil Groce, a senior network defense analyst in the CERT Division of the Carnegie Mellon University Software Engineering Institute, discusses the security implications of this dramatic increase in the number of people in organizations who are working from home, examines the threats and vulnerabilities associated with the increase in remote work, and offers practical solutions to individuals and enterprises for operating securely in this new environment.

    • 46 мин.
    An Introduction to CMMC Assessment Guides

    An Introduction to CMMC Assessment Guides

    The Cybersecurity Maturity Model Certification (CMMC) defines specific cybersecurity practices across five levels of maturity while also measuring the degree to which those practices are institutionalized within an organization. In this SEI Podcast, Andrew Hoover and Katie Stewart, architects of the CMMC model and researchers at the Carnegie Mellon University Software Engineering Institute, discuss the CMMC assessment guides, how they were developed, and how they can be used.

    • 8 мин.
    The CMMC Level 3 Assessment Guide: A Closer Look

    The CMMC Level 3 Assessment Guide: A Closer Look

    The Cybersecurity Maturity Model Certification (CMMC) for Defense Industrial Base suppliers defines specific cybersecurity practices across five levels of maturity while also measuring the degree to which those practices are institutionalized within an organization. In this SEI podcast, Andrew Hoover and Katie Stewart, architects of the CMMC model and researchers at the Carnegie Mellon University Software Engineering Institute, discuss the Level 3 Assessment Guide for CMMC.

    • 13 мин.
    The CMMC Level 1 Assessment Guide: A Closer Look

    The CMMC Level 1 Assessment Guide: A Closer Look

    The Cybersecurity Maturity Model Certification (CMMC) for Defense Industrial Base (DIB) suppliers defines specific cybersecurity practices across five levels of maturity while also measuring the degree to which those practices are institutionalized within an organization. In this SEI Podcast, Andrew Hoover and Katie Stewart, architects of the CMMC model, discuss the Level 1 Assessment Guide for the CMMC.

    • 20 мин.
    Achieving Continuous Authority to Operate (ATO)

    Achieving Continuous Authority to Operate (ATO)

    Authority to Operate (ATO) is a process that certifies a system to operate for a certain period of time by evaluating the risk of the system's security controls. In this podcast, Shane Ficorilli and Hasan Yasar, both with the Carnegie Mellon University Software Engineering Institute, discuss continuous ATO, including challenges, the role of DevSecOps, and cultural issues that organizations must address.

    • 33 мин.

Топ подкастов в категории «Технологии»

Слушатели также подписываются на

Еще от: Carnegie Mellon University