Cybersecurity frameworks, standards and guidelines provide the essential structures that empower organizations to efficiently safeguard data. Moreover, they support the cybersecurity professionals who implement and continuously improve them, providing a tested and recognized basis for establishing strong cybersecurity postures, mitigating risks and effectively combating the ever-evolving threat landscape.

At ISC2 Security Congress 2024, industry leaders will dive into this critical focus area and explore the latest insights that will influence the future of cybersecurity.

The Shifting Landscape of Frameworks, Standards & Guidelines

As technology evolves with improvements and efficiencies, so do its vulnerabilities and dangers. The world of cybersecurity is changing. The frameworks, standards and guidelines that structure it must also advance in response.

At ISC2 Security Congress, cybersecurity experts will examine some of the most significant trends shaping the landscape, such as:

  • Risk Management: As threats grow more sophisticated, organizations are placing a greater emphasis on risk management. Frameworks and standards are adapting to support this shift, enabling organizations to proactively identify, assess and mitigate risks.
  • Emerging Technologies: Emerging technologies are transforming the cybersecurity landscape, from augmented reality to artificial intelligence. Frameworks and standards are evolving and must continuously improve to address the unique challenges and opportunities presented by these technologies.
  • Safeguarding Privacy and Data: The escalating frequency and severity of data breaches and privacy violations underscores the critical need for robust data protection measures. The protection of sensitive information is not just a legal obligation but also a fundamental ethical responsibility. Frameworks and standards are adapting to address these challenges with methods such as the rise of privacy regulations, data minimization, purpose limitation, transparency and accountability.
  • InfoSec and AI Governance: As AI becomes more prevalent in our daily lives, more robust frameworks, standards and guidelines must be put into place to not only empower users, but also safeguard information. Implementation of the new standards will help organizations navigate these new challenges and opportunities.
  • The National Institute of Standards and Technology (NIST) Framework: The NIST Cybersecurity Framework remains a foundational tool for organizations seeking to build and improve their cybersecurity programs. Its comprehensive and risk-based approach, flexibility and adaptability, and its integration with organizations help pave the way for the future of the industry. ISC2 Security Congress will cover the latest updates and best practices that can help professionals leverage this framework.

Featured Sessions at ISC2 Security Congress

At ISC2 Security Congress 2024, you'll hear from thought leaders who are driving forward frameworks, standards and guidelines. Here are just a few of the sessions you won't want to miss:

Lora Vaughn, CISSP
Lora Vaughn, CISSP
Chief Information Security Officer,
MoneyGram,
United States

Measuring Cybersecurity Success: Crafting Metrics with NIST CSF and Beyond

Learn how to bridge the gap between cybersecurity leaders' understanding of necessary security improvements and the ability to effectively communicate those needs and progress to senior leadership and board members. Lora Vaugn will utilize the NIST Cybersecurity Framework to conduct maturity assessments, establish roadmaps and provide actionable reports on progress over time.

Panel Moderator:
Steve Johnson, CISSP, MSc
Steve Johnson, CISSP, MSc
Professional Associate and Sr. Control Systems Cybersecurity Specialist,
HDR,
United States

Speakers:

Brandon Erndt
Brandon Erndt
OT Cybersecurity Program Development Lead
HDR,
United States

F Charlene Watson, BSEd, MSCS, CISSP
F Charlene Watson, BSEd, MSCS, CISSP
Senior Cybersecurity Controls System Specialist
HDR,
United States

Cyber-Physical Security of the OT Systems and Components That Perform Critical Processes

This panel will explore the unique challenges and strategies of operational technology (OT) cybersecurity in contrast to traditional IT cyber defense, offering key best practices and resources. It will also provide an overview of regulated industries and will equip attendees with the knowledge to differentiate between IT and OT cybersecurity, understand the nuances of regulated and framework-based industries, and explore potential career opportunities in the expanding field of OT cybersecurity.

Thomas Neeff
Thomas Neeff
Managing Director, TEN Information Management

ISO 27001 and ISO 42001: A Powerful Combo to Manage InfoSec and AI Governance

Explore the relationship between ISO 27001 and ISO 42001, and how these standards can be integrated to create a holistic governance approach for managing information security and artificial intelligence. By highlighting the distinctions between the two standards, you will gain a deeper understanding of how they can work together to strengthen cybersecurity resilience, improve data handling, and enhance operational efficiency.

Moving Boldly Forward in the Industry

At ISC2 Security Congress 2024, we'll explore the latest trends, insights, and best practices within frameworks, standards and guidelines.

Join us to learn from industry experts, network with peers and gain the knowledge you need to strengthen your organization's cybersecurity posture. Register before October 1st and save $200 on an All Access or Virtual Pass: www.isc2.org/congress