Blog

Implementing a Security Framework

TLDR; 1. Steal this document 2. Read and understand the model 3. Give a Current Rating to each control 4. Give a Desired Rating to each control 5. Identify gaps 6. Scope projects to close gaps 7. Execute projects 8. Rinse and repeat