CISO Playbook: Critical Questions to Ask About Security Testing in Rapid DevelopmentJohn GirardMark Horvath
In that spirit, here are the top five questions I would pose to DevOps job candidates, as a CISO interviewing them. A common thread in the questions is driving toward an understanding of whether DevOps (or DevSecOps, mindful of incorporating security considerations) candidates view themselves as...
My steps generally involve seeking a Managed Security Services Provider (MSSP) and sometimes a virtual CISO (vCISO). Because I’m not the expert in the room, I ask questions to help StarCIO clients understand risks and make better decisions when procuring security services. What to ask an MS...
Maybe I can give my thoughts on this. This is roughly what I would ask, 1. What experience do you have with DevSecOps? 2. Explain the DevSecOps workflow process you follow. 3. How do you ensure security in a DevOps environment? 4. How do you make sure that ...
Find out more about how Workspot addresses the toughest cloud desktop security questions. Today, Fortune 500 companies with the most stringent IP protection and governance requirements trust their cloud desktops to Workspot.Schedule a demoso we can discuss your requirements!
FITZGERALD, T, Clarifying the Roles of Information Security: 13 Questions the CEO, CIO, and CISO Must Ask Each Other, Information Systems Security, Volume 16, Issue 5, Pages 257-263, 2007.Fitzgerald, T. (2007). Clarifying the Roles of Information Security: 13 Questions the CEO, CIO, and...
Before You Take the Plunge ... Prior to a Job Switch, Ask Questions to Learn If the Company You Are Considering Is in Good Shape, Says Former Yahoo CISO Justin SomainiSomaini, Justin
What questions should a new security leader ask before starting the journey of vendor consolidation? The first question that should be asked is "why?" Why would they want to consider doing this in the first place? This question will be revealing and there's something substantial be...
Maybe I can give my thoughts on this. This is roughly what I would ask, 1. What experience do you have with DevSecOps? 2. Explain the DevSecOps workflow process you follow. 3. How do you ensure security in a DevOps environment?