InfoSec/Privacy Regulatory Update 2019 presented at BSidesTampa 2019

by Michael Brown,

Summary : Several new and updated frameworks, standards, and regulations came out over the last year. Many Information Security professional may not have been able to keep up with all that came out. We will go over at a high level some of the updates that came out last year or are planned for the coming year. These include:* NIST Cybersecurity Framework v1.1* FISMA updates: NIST SP 800-53R5 & SP 800-37R2* Executive Order on Cybersecurity* 23 NYDFS 500* GDPR (and now California)* OWASP Top 10 2017* CIS CSC 7 (soon to be updates to 7.1)* Baldwin Excellence Builder- Cybersecurity* CMMI Institute’s Cybermaturity Platform* Updates for CMMI & ITIL