The Top-Down Approach in Cybersecurity and Compliance Isn't Working - What's Next? - Justin Beals - ESW #384

Naturally, the next approach to try is a federated one. How do we break down cybersecurity into more bite-sized components? How do we alleviate all this CISO stress we've heard about, and make their job seem less impossible than it does today?

This will be a more standards and GRC focused discussion, covering:

1. the reasons why cross-walking doesn't work
2. the reasons why traditional TPRM approaches (e.g. questionnaires) don't work
3. opportunities for AI to help
4. risk management or sales support?

Show Notes: https://securityweekly.com/esw-384