All Articles

NIST (7)

Executive Summary of Capital One Data Breach: Analyzing Compliance and Cybersecurity Measure (RSAConference 2021)

Posted by pritha on May 16, 2025 at 4:06am in Blog

Executive Summary of Capital One Data Breach: Analyzing Compliance and Cybersecurity Measure (RSAC 2021). This research paper presentation by Nelson and Anchises Moraes examines the notable 2019 data breach of Capital One, focusing on the adequacy of

Bugs Framework (BF): Formalizing Cybersecurity Weaknesses and Vulnerabilities | Irena Bojanova

Posted by Biswajit Banerjee on April 20, 2025 at 6:19pm in Blog

Cybersecurity professionals have long relied on vulnerability databases and CWE lists, but NIST's Bugs Framework (BF) brings a refreshing formalism and extensibility to the field. Developed by Irena Bojanova and detailed in NIST Special Publication 8

Evaluating Cybersecurity Maturity Aligned To NIST: A Guide To Protecting Your Business in the Digital Age

Posted by pritha on June 20, 2023 at 7:35pm in Blog

establishing a robust cybersecurity posture and maturity level is paramount for organizations in the face of the ever-growing threat landscape of cyberattacks. By implementing a comprehensive cybersecurity maturity model, businesses can assess their

NIST and Web Application Security:Is Your Organization Really Considering All of the Risks in the Enterprise?

Posted by Mark Wireman on May 16, 2013 at 2:30am

Writing not only functional but secure applications is not a new concept or idea that has taken the Industry by storm. However, many Government and Commercial Organizations are still not adhering to or requiring their Organizations to adopt, implemen

Playbook for DDOS Security Response

Posted by Amit, CISO Platform on May 6, 2017 at 3:00am

(Author : Chandra Prakash Suryawanshi, SVP- India & APAC at Aujas Networks Pvt. Ltd. )

Information security incident management if often a combination of technical controls, processes, communication strategy, detailed procedure and plan. The objecti

NIST Aligned Process For Threat Management

Posted by pritha on July 12, 2017 at 8:00pm

This article highlights the Threat Management Process in Incident Response and brings in the understanding of the Kill chain model. Excerpts have been taken from a session presented at SACON - The Security Architecture Conference. You can view the fu

Security Automation Simplified via NIST OSCAL: We’re Not in Kansas Anymore

Posted by Kuladeep Tummala on June 17, 2018 at 6:30pm

COBIT, ISO/IEC 27001, NIST 800.53, PCI, oh my. The path to compliance is not a yellow brick road. IT professionals face a variety of security standards that they must meet simultaneously. This talk will present the NIST Open Security Controls Assessm

Join The Community Discussion

Daily Breach Intelligence 26 November 2025 - Dartmouth College has confirmed that its Oracle EBS instance was compromised; New Critical CVE with unauthenticated RCE in broadcast infrastructure..

Posted by pritha on November 26, 2025 at 2:06am in Blog

CISO Platform

A global community of 5K+ Senior IT Security executives and 40K+ subscribers with the vision of meaningful collaboration, knowledge, and intelligence sharing to fight the growing cyber security threats.

Join CISO Community Share Your Knowledge (Post A Blog)

Atlanta Chapter Meet: Build the Pen Test Maturity Model (Virtual Session)

Jan 14, 2026 at 7:30pm to Feb 25, 2026 at 9:00pm UTC+5.5

Online

Description:
The Atlanta Pen Test Chapter has officially begun and is now actively underway.

Atlanta CISOs and security teams have kicked off Pen Test Chapter #1 (Virtual), an ongoing working series focused on drafting Pen Test Maturity Model v0.1, designed for an intel-led, exploit-validated, and AI-assisted security reality. The chapter was announced at …
Created by: Biswajit Banerjee
Tags: ciso, pen testing, red team, security leadership

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use CISO Platform.

Please check your browser settings or contact your system administrator.

NIST (7)

Executive Summary of Capital One Data Breach: Analyzing Compliance and Cybersecurity Measure (RSAConference 2021)

Bugs Framework (BF): Formalizing Cybersecurity Weaknesses and Vulnerabilities | Irena Bojanova

Evaluating Cybersecurity Maturity Aligned To NIST: A Guide To Protecting Your Business in the Digital Age

NIST and Web Application Security:Is Your Organization Really Considering All of the Risks in the Enterprise?

Playbook for DDOS Security Response

NIST Aligned Process For Threat Management

Security Automation Simplified via NIST OSCAL: We’re Not in Kansas Anymore

Note: this page contains paid content.

Join The Community Discussion

Read More

Top Breaches in Cyber Security in 2025 – upcoming live panel

Weekly CISO Podcast Pick – Why Cyber Risk Fails: What CISOs Should Do Instead

Navigating Cybersecurity in 2026: A Deep Dive into Trends, Statistics and Strategies for Enterprises, SMBs & BFSI/NBFCs

Daily Breach Intelligence 26 November 2025 - Dartmouth College has confirmed that its Oracle EBS instance was compromised; New Critical CVE with unauthenticated RCE in broadcast infrastructure..

Note: this page contains paid content.

CISO Platform

A global community of 5K+ Senior IT Security executives and 40K+ subscribers with the vision of meaningful collaboration, knowledge, and intelligence sharing to fight the growing cyber security threats.

Atlanta Chapter Meet: Build the Pen Test Maturity Model (Virtual Session)