Governance & Risk Management , Incident & Breach Response , Managed Detection & Response (MDR)

FBI Agent on Getting GRC Right

Malcolm Palmore on Emphasizing the Fundamentals of Security Nick Holland (@nickster2407) • July 30, 2018

FBI Agent on Getting GRC Right

Malcolm Palmore, assistant special agent in charge, FBI San Francisco Cyber Division

The fundamentals of governance, risk and compliance are sorely lacking in too many organizations that are striving to improve cybersecurity, says Malcolm Palmore, an assistant special agent at the FBI.

See Also: LIVE Webinar | Stop, Drop (a Table) & Roll: An SQL Highlight Discussion

In a video interview at Information Security Media Group's recent San Francisco Fraud and Breach Prevention Summit, Palmore discusses:

The necessity of adopting 20 critical security controls;
The need to re-emphasize patch management and log management;
Other critical security steps.

Palmore is assistant special agent in charge of the FBI's San Francisco Cyber Division. Previously, he served as a supervisory special agent in the FBI's Sacramento division. Prior to joining the FBI, he served as a commissioned officer in the United States Marine Corps.

Previous
Why Third-Party Risk Management Is a Top Priority for CISOs

Next
GDPR and the Next Generation of Privacy Legislation

About the Author

Nick Holland

Nick Holland

Former Director, Banking and Payments

Holland focused on the intersection of digital banking, payments and security technologies. He has spoken at a variety of conferences and events, including Mobile World Congress, Money2020, Next Bank and SXSW, and has been quoted by The Wall Street Journal, CNN Money, MSNBC, NPR, Forbes, Fortune, BusinessWeek, Time Magazine, The Economist and the Financial Times.

You might also be interested in …

How to Get High-Performing, Secure Networks While Staying Within Budget

How to Get High-Performing, Secure Networks While Staying Within Budget

Rapid Digitization and Risk: A Roundtable Preview

►

Rapid Digitization and Risk: A Roundtable Preview

Evaluating and Reducing Supply Chain Risk

►

Evaluating and Reducing Supply Chain Risk

OnDemand : Learn the ABCs to the 3 V's of Asset Management

OnDemand : Learn the ABCs to the 3 V's of Asset Management

PSA Buyer’s Guide Checklist: What Every Service Provider Needs to Know Before Buying a Business Management Platform

PSA Buyer’s Guide Checklist: What Every Service Provider Needs to Know Before Buying a Business Management Platform

Incident Response in 4 Steps

Incident Response in 4 Steps

On Demand | Simplifying your Security Stack with SSE Integration

On Demand | Simplifying your Security Stack with SSE Integration

Choosing the Right Encryption Method to Securely Exchange Files

►

Choosing the Right Encryption Method to Securely Exchange Files

Webinar | How to Build a Resilient Security Program Today Using MDR Services

Webinar | How to Build a Resilient Security Program Today Using MDR Services

Around the Network

Whistleblowing Brings Visibility to the Role of CISOs

Whistleblowing Brings Visibility to the Role of CISOs

Are We Doomed? Not If We Focus on Cyber Resilience

Are We Doomed? Not If We Focus on Cyber Resilience

Organization-Wide Passwordless Orchestration

Organization-Wide Passwordless Orchestration

How 2U Inc. Is Fortifying Its Systems and Solutions Designs

How 2U Inc. Is Fortifying Its Systems and Solutions Designs

Protecting the Hidden Layer in Neural Networks

Protecting the Hidden Layer in Neural Networks

Securing the SaaS Layer

Securing the SaaS Layer

Showing Evidence of 'Recognized Security Practices'

Showing Evidence of 'Recognized Security Practices'

The Persisting Risks Posed by Legacy Medical Devices

The Persisting Risks Posed by Legacy Medical Devices

David Derigiotis on the Complex World of Cyber Insurance

David Derigiotis on the Complex World of Cyber Insurance

Craig Box of ARMO on Kubernetes and Complexity

Craig Box of ARMO on Kubernetes and Complexity

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.