infosec-compendiums

Our job is to manage and reduce risks to whatever level our organization decides it needs, while minimizing friction. It’s a balance. rmogull

govern

[[maturity-model]]

---

identify

[[vulnerability-management]]

---

protect

[[threat-modelling]] [[aws-protect]] appsec program

---

detect

[[detection-engineering]] [[aws-detect-and-response]] [[cloud-detection-catalogue]]

---

response

[[aws-detect-and-response]]

---

recover

---

other

[[cloud-security]]

---

references-and-related

BSidesSF 2020 - How to 10X Your Company’s Security - clint gibbler