Good Governance: 'It's All Hygiene'Martin Roesch on NIST's 'Govern' Function and How Good Governance Improves Security
The National Institute of Standards and Technology has updated its Cybersecurity Framework to add a sixth pillar: the "govern" function. In the constant struggle to manage the other five pillars - identify, protect, detect, respond and recover - security leaders often do not have governance at top of mind, said Netography CEO Martin Roesch.
"Good governance is the root of having good security. It's all hygiene - maintaining basic hygiene so you can have a defendable network," he said.
Roesch discussed what he called the "atomized networks" of today - enterprise networks that are "scattered across multi-cloud plus on-prem" environments as a result of the pandemic. He said their infrastructure is often poorly understood and poorly governed.
In this episode of CyberEd.io's podcast series "Cybersecurity Insights," Roesch also discussed:
- The evolution of zero trust adoption and potential problems with zero trust;
- Generative AI's "practical effects in security technology" - and its risks;
- How Netography provides cloud-native, real-time defense for atomized networks.
Roesch is the author and lead developer of the open-source intrusion prevention system Snort. In 2001, he founded Sourcefire and served as CEO and CTO. When the company was acquired by Cisco, he led the security business group as chief architect.