In episode 71 of the Cybersecurity Minute, Chris Hughes explains a new cybersecurity tool from MITRE.
This episode is sponsored by Acceleration Economy’s Digital CIO Summit, taking place April 4-6. Register for the free event here. Tune in to the event to hear from CIO practitioners discuss their modernization and growth strategies.
Highlights
00:14 — MITRE is a federally funded research and development center (FFRDC) with which most people in the security and technology industries are familiar.
Which companies are the most important vendors in cybersecurity? Check out
the Acceleration Economy Cybersecurity
Top 10 Shortlist.
00:36 — MITRE has recently come out with its System of Trust risk model manager tool, as well as a community engagement group of more than 30 members, including Microsoft. The System of Trust’s body of knowledge breaks down software supply chain and cybersecurity supply chain risk management into different areas.
01:03 — First is the risk categories. These are supplier risks, supply risks, and service risks.
01:24 — MITRE breaks these down even further into different categorizations and criteria for suppliers, supplies, and services.
01:54 — In terms of services, it touches on service quality, risk, reliability, and security risk.
02:27 — There are already a lot of great resources for supply chain risk management: the cybersecurity executive order, the National Institute of Standards and Technology (NIST), the National Security Agency (NSA), the Cloud Native Computing Foundation (CNCF), and the Cloud Security Alliance (CSA). This is another great industry resource.
Want more cybersecurity insights? Visit the Cybersecurity channel:
