| Testing - Webinar Design 1 | KirkpatrickPrice

Testing - Webinar Design 1

Related Videos

A Thorough Audit Makes a Difference

A Typical Journey with Risk

Achieving High Availability in AWS

Auditor Insight: The Top 3 Issues with Your Risk Assessment [WEBINAR]

Avoid Using Default Service Account When Configuring Instances

Benefits of Risk Management

Business Environment

Cloud Services Are Assets with Risk

Communicating Risk Assessment Results

Components to Include in Your Cybersecurity Program

Consider the Potential for Fraud in Assessing Risks

Consistently Manage User Accounts with OS Login

Create an Assessment Together

Creating Unity Through Risk Assessment

Cyber Threat Intelligence

Data Protection Impact Assessments and GDPR

Defining Likelihood and Impact

Defining Risk, Threat and Vulnerability

Definitions for Risk Assessment Components

Determining Impact to Your Assets

Disabling Insecure Ports and Protocols

Do Data Privacy Laws Require Specific Security Controls?.mov

Do Not Enable Serial Ports for VM Instance

Do Not Use Project-Wide SSH Keys When Authenticating Instances

Does Zero Risk Exist

Don't Discount Likelihood

EC2 Instances in Availability Zones

Enable Access Transparency to Monitor Google Cloud Engineer Access

Enable Alerting for Cloud Storage IAM Permission Changes

Enable Bucket Lock to Protect Sink Destinations from Modification

Enable Cloud Audit Logging Across Your Project

Enable Cloud DNS Logging for VPC Networks

Enable HTTPS Connections on App Engine Applications

Enable Shielded VM to Ensure Operating System is Trustworthy

Encrypt BigQuery Datasets with Customer Managed Encryption Key (CMEK)

Encrypted Cardholder Data and Scope

Encryption Opportunities

Encryption for EBS Volumes

Encryption for S3 Buckets

Ensure Alerts Exist for Project Ownership Changes

Ensure Alerts are Received for VPC Network Changes

Ensure BigQuery Datasets Are Not Publicly Accessible

Ensure Cloud Storage Buckets Are Not Publicly Accessible

Establish a Log Metric Alert for Configuration Changes in SQL Instances

Evaluating Likelihood and Impact

Events that Drive Key Rotation

Generate Log Metric Alerts for Custom Role Changes

HIPAA Risk Analysis

HIPAA Safe Harbor

HIPAA and Risk Analysis

HITRUST and Risk Assessment

Harden Cloud SQL Database with Logging

Historically View Project Resources in Asset Inventory

How Do We Become Compliant With PCI?.mp4

How Do You Scope a PCI DSS Assessment?

How Much Time Does An Assessment Take?

How Often Should We Assess Risk

How to Configure Encryption for EBS Volumes on New EC2 Instances

How to Configure Encryption for S3 Buckets

How to Define Your Scope

How to Identify, Analyze, and Manage Risks to Objectives

How to Properly Assess Client Risk

How to Restrict Public Access to S3 Buckets

How to Use S3 Bucket Policies

How to Use S3 Versioning and Lifecycle Rules

IP Forwarding Should Not Be Enabled for Instances

ISO 27001 Clause 6.1.1

ISO 27001 Clause 6.1.2

ISO 27001 Risk Assessment Documentation

Identify Your Assets

Identify and Assess Changes That Could Impact Internal Controls

Identify and Mitigate Risk with a Risk Assessment Policy

Identify and Prioritize Your Cloud Security Risk

Identifying Assets, Threats, and Vulnerabilities

Industry Standards for Risk Assessment

Introduction to NIST SP 800-30

Introduction to NIST SP 800-39

Just start!

Key Rotation and Management

Leverage Confidential Computing to Protect Data

Leverage Google Cloud Engineers by Granting Access Approval

Limiting PCI DSS Scope

Load Balancers Must Require TLS 1.2

Manage Access Securely Using Uniform Bucket-Level Access

Minimize Public IP Address on Compute Instances

Minimize Root and SA Account Access in Cloud SQL

Monitoring Changing Risk

NIST CSF Identify Function

NIST Security & Privacy Controls

Overview of Environmental Risk

PCI DSS Assessment Scope: Identify All Other People Processes and Technology

PCI DSS Assessment Scope: Identify Cardholder Data Flows

PCI DSS Assessment Scope: Identify People and Processes

PCI DSS Assessment Scope: Identify Technology

PCI DSS Assessment Scope: Identify Third Parties

PCI DSS and Risk Assessment

PCI Requirement 12.2 – Implement a Risk Assessment Process

PCI v4.0 - 11.1.1: Requirement 11 Polices and Procedures Are In Place

PCI v4.0 - 11.1.2: Requirement 11 Roles and Responsibilities Are In Place

PCI v4.0 - 11.2.1: Wireless Access Points Are Properly Managed

PCI v4.0 - 11.2.2: Maintain Inventory of All Authorized Wireless Access Points

PCI v4.0 - 11.3.1.1: Manage Non-High Risk and Non-Critical Vulnerabilities Appropriately

PCI v4.0 - 11.3.1.2: Use Authenticated Vulnerability Scanning Tools for Internal Scans

PCI v4.0 - 11.3.1.3: Perform Internal Scans After Significant Changes

PCI v4.0 - 11.3.1: Perform Internal Vulnerability Scans Frequently

PCI v4.0 - 11.3.2.1: Perform External Scans After Significant Changes

PCI v4.0 - 11.3.2: Perform External Vulnerability Scans Frequently

PCI v4.0 - 11.4.1: Define Document and Implement a Penetration Testing Methodology

PCI v4.0 - 11.4.2: Regularly Perform Internal Penetration Testing

PCI v4.0 - 11.4.3: Regularly Perform External Penetration Testing

PCI v4.0 - 11.4.4: Correct Vulnerabilities Found in Penetration Testing

PCI v4.0 - 11.4.5 & 11.4.6: Test the Effectiveness of Segmentation Controls Regularly

PCI v4.0 - 11.4.7: Multi-Tenant Service Providers Support Customers for External Penetration Testing

PCI v4.0 - 11.5.1.1: Detect Alert and Address Covert Malware Communication Channels

PCI v4.0 - 11.5.1: Implement Intrusion Detection and or Prevention Techniques

PCI v4.0 - 11.5.2: Deploy a Change-Detection Mechanism

PCI v4.0 - 11.6.1: Change-Detection or Tamper-Detection Mechanisms Are Deployed on Payment Pages

Partner With Risk Assessment Experts

Partner with a Risk Assessment Expert

Personnel Risk

Preparing for a Risk Assessment

Preventing Publicly Available S3 Buckets

Ranking Risk

Re-Keying for Decryption

Real-world Risk Assessment

Receive Alerts for Audit Configuration Changes

Receive Alerts for VPC Network Firewall Rule Changes

Register for a Risk Assessment Workshop

Restrict API Permissions If Using Default Service Accounts

Restrict Unnecessary External Access in Cloud SQL

Risk Assessment Obstacles

Risk Assessment Policy

Risk Assessment Requirements

Risk Management Strategy

Risk Treatment for ISO 27001

SOC 2 Academy - How to Manage Risks

SOC 2 Academy - What Types of Risks Does Your Organization Face?

SOC 2 Academy: Assessing the Significance of Risk

SOC 2 Academy: How Fraud Can Impact Risk

SOC 2 Academy: How to Perform Thorough Inventory

Should I Share Our Risk Assessment

Six Types of Risk

Specify Customer-Managed Encryption Key (CMEK) as Default in BigQuery Datasets

Specify Objectives for Risk Assessments

Step One for Risk Assessment

Testing - Webinar Design 2

The Assessment of Fraud for SOC 2

The Importance of Patch Management in Virtual Machines

Thinking About Likelihood and Impact

Third Parties and Your PCI DSS Assessment

Third Parties are Threats Too

Three Types of Controls

Tips for Getting Started with Risk Assessment

Transfer of Legal Risk

Types of Assets to Consider

Understanding NIST SP 800-39

Use Cloud Logging Sinks to Retain Logs

Use Customer Supplied Encyryption Keys (CSEK) for Critical VM Disks

Use TLS to Encrypt All Connections in Cloud SQL

Using AWS KMS

Using S3 Versioning

Using TLS 1.2 to Encrypt Data in Transit

Using Your Risk Assessment Results

VPC Network Route Changes Should Trigger Alerts

What Data Does PCI DSS Apply To?

What Threats Should Be Considered

What are Threats

Who Does PCI DSS Apply To?

Who Is Involved In PCI?