Episode 33 – 3 Pillars for Starting a Security Program

In this episode John goes at it alone and discusses his own experiences with starting up a security program at different organizations by focusing in on what he views are the 3 key pillars for a new security program. Some links of interest: CIS Critical Security Controls - https://www.cisecurity.org/controls/ Malware Archeology - Logging Cheat Sheets - https://www.malwarearchaeology.com/cheat-sheets/ Linux Security Incident Log Review Checklist - https://zeltser.com/security-incident-log-review-checklist/ SANS Log Management In-Depth - https://www.sans.org/brochure/course/log-management-in-depth/6 OWASP Logging Cheat Sheet - https://www.owasp.org/index.php/Logging_Cheat_Sheet Defensive Security Handbook - http://shop.oreilly.com/product/0636920051671.do Want to reach out to the show?  There's a few ways to get in touch! Show's Twitter: @PurpleSquadSec John's Twitter: @JohnsNotHere Podcast Website: purplesquadsec.com Sign-Up for our Slack community: https://signup.purplesquadsec.com Thanks for listening, and as always, I will talk with you all again next time. Find out more at http://purplesquadsec.com