This talk covered updates on CJIS, HIPAA, Privacy, GovRAMP, PCI, and security best practices, with penetration testing and zero-trust strategies.

 

📥 Download Slides

 

CISA Guidance

• Microsegmentation
• Zero Trust Maturity Model v2

 

CJIS

• CJIS Resources
• CJIS Security Policy v6.0

 

GovRAMP

• Authorized Product List
• Free Membership

 

HIPAA Rules

• HIPAA Security Rule
• HIPAA Security Rule Revisions

 

NIST Frameworks

• NIST AI RMF 1.0
• NIST AI RMF Playbook
• NIST AI 600-1
• NIST Cybersecurity Framework (CSF) 2.0
• NIST SP 1800-38B, Post Quantum Cryptography Readiness
• NIST Privacy Framework 1.0
• NIST Privacy Framework 1.1 Draft

 

PCI Resources

• Approved PCI Products and Solutions
• PCI DSS 4.0.1
• PCI 3.2.1 to 4.0 Changes
• PCI Scoping & Segmentation

 

Post Quantum Cryptography

• NIST SP 1800-38B, Post Quantum Cryptography Readiness
• Post Quantum Cryptography Coalition

 

Privacy Resources

• Oregon Consumer Privacy Act
• IAPP State Privacy Legislation Tracker
• NIST Privacy Framework 1.0
• NIST Privacy Framework 1.1 Draft

 

Secure Controls Framework

• Secure Controls Framework

 

Related Structured Blog Topics

• AI - Mitigating Shadow AI
• CMMC Final Rule
• Data Security Posture Management (DSPM)
• HIPAA Compliance Strategy
• HIPAA in Hybrid Cloud
• PCI in Canada
• Penetration Test Insights
• Ransomware Defense via Penetration Testing

 

Additional Resources

• Highly Evasive Adaptive Threats
• Network Segmentation Infographic (CISA)
• Verizon Breach Investigations Report