#145 - The Cost of Cyber Defense

On this episode we overview the CIS Document titled, "The Cost of Cyber Defense". https://www.cisecurity.org/insights/white-papers/the-cost-of-cyber-defense-cis-controls-ig1

Big Thanks to our Sponsors

• Risk3Sixty - https://risk3sixty.com/whitepaper/
• CPRIME - For those valuing leadership, policy, and governance in tech risk and security, Cprime is here to help. Enhance your skills with our training and workshops, ensuring effective policy design and strategy alignment. As a tech coaching firm, Cprime offers classes for teams
  and executives on security analytics and risk management. Led by a Cprime expert, align expectations, prioritize, and map tools for robust governance across your tech portfolio. Upgrade risk management at Cprime.com/train and use code 'cprimepod' for 15% off
  training. Elevate your approach!

Transcripts https://docs.google.com/document/d/1TAltDwJxQg9MqVRNCCgwIJa1a3WKpep5---WVOUsdLE/ 

Chapters

• 00:00 Introduction
• 01:30 What are the CIS Critical Security Controls?
• 03:00 How have the CIS Critical Security Controls evolved over time?
• 05:30 What are the benefits of implementing the CIS Critical Security Controls?
• 07:30 The three crucial questions for implementing the CIS Critical Security Controls
• 10:30 How to prioritize the CIS Critical Security Controls
• 12:30 What are Implementation Groups?
• 13:37 Enterprise Profiles
• 14:00 Why are Implementation Groups important?
• 15:30 How to choose the right Implementation Group for your organization
• 19:46 Cost Breakdown
• 23:16 Thoughts on the CIS Study