Matthew Otwell, Chief Information Security Officer, MD
Department of Health
“When you’ve identified the gaps and put your
plans in place, the next challenge is effectively
communicating how you’re going to handle
and remediate the gaps you’ve identified.”
The COVID-19 pandemic is not selective; it can affect every person. For any organization, the health and safety of its personnel should be the primary focus. From there, you can begin to visualize what the post-pandemic work environment will be for your organization. Following a good security framework and model will help you with this visualization, enabling your security leaders to identify some of the obvious and less obvious gaps.
From an information security perspective, identifying gaps is particularly challenging, especially because most organizations are reactive rather than proactive. One way to identify gaps is to implement a scorecard. That way, while following a good security framework and security model, you can identify where deficiencies exist.
When you’ve identified the gaps and put your plans in place, the next challenge is effectively communicating how you’re going to handle and remediate the gaps you’ve identified. You can have the best plan in the world, but if you can’t effectively distribute and communicate it, the plan will be ineffective. Understand the proper channels of communication within your organization so that you can disseminate important information in a timely manner.
This is an excerpt from 7 Experts on Transforming Your Threat Detection & Response Strategy. This eBook was generously sponsored by Trustwave.