Anil Markose’s Post

Defining the Future of Compliance

2mo

Automated Continuous Assessments are the only way forward if we want to keep pace. Point in time assessments can’t provide the necessary assurance and significantly delay mission access to leading tech. It’s the same issue in Commercial and Jeff Buss makes a great point.

Jeff Buss

Chief Information Officer

2mo

Love the DoD's initiative to move to a more automated continuous assessment of Cyber/IT terrain. Well done Joint Force Headquarters - Department of Defense Information Network (JFHQ-DODIN)! Tools like Drata and Microsoft Purview Compliance Manager are making this possible in the commercial sector as well. https://lnkd.in/ebZbeywR

DOD Has a New Cyber Resiliency Assessment Program

https://govciomedia.com

6 Comments

Snehal Antani

CEO @ Horizon3.ai

2mo

For every “Patch Tuesday” there should be a “Pentest Wednesday”…. Or even better, the network should be assessed after every major change, onboarding of new employee cohorts, and any patches/updates applied… with reporting of how things have changed over time

31 Reactions

Mark Whitehead

Owner: Nday Security, Inc. Cybersecurity Executive, Advisor, Entrepreneur who is always surrounded by smart minds

2mo

Glad more are seeing this! Being exposed the other 50 weeks out of the year hasn’t worked.

1 Reaction

Warner Moore

2mo

Vulnerability scanning: the new hotness? 🤔

Andy Watkin-Child CSyP, CEng, MSyI, MIMechE

2mo

Thaddeus Dziekanowski - CDM been the dream of DHS and CSA for years.

2 Reactions

See more comments

To view or add a comment, sign in

More Relevant Posts

Anil Markose

Defining the Future of Compliance
2d
Report this post
I’m very excited to share that I have joined Oracle’s leadership! Thank you to all my friends that made this possible, and to Allen Marine for a phenomenal recruiting process. We are doing some big things at Oracle…reach out directly if you want to learn more about Oracle SaaS Compliance. #Oracle
Allen Marine

Executive Leadership Recruiter at Oracle (VP, GM, SVP, EVP)
2d

Anil Markose, we are very excited to welcome you to #Oracle during this time of innovation within the Global SaaS Compliance space! #Fusionapplications #oraclecloud
121 Comments
Like Comment
To view or add a comment, sign in
Anil Markose

Defining the Future of Compliance
1mo
Report this post
Great post by Erez Liebermann on the upcoming DORA requirements. The intent of a lot of these types of disclosure requirements (consider similar expectations in the US from SEC for public companies, or updated CMMC guidance for Defense Sector) is increased transparency as the digital supply chain becomes more complicated with SaaS, PaaS and IaaS variations. I’m not saying this is the best way to force transparency, but these regulatory obligations will require better integration of compliance, engineering, legal and security teams - to enable a more continuous and operational set of monitoring and reporting mechanisms. If you approach this as just a “once a year audit” with random evidence pull, pain level will be very high for all parts involved.

Erez Liebermann

Partner at Debevoise & Plimpton, Former Cybercrime Federal Prosecutor, Former Chief Counsel for Cyber, Privacy and Data
1mo

The EU Digial Operational Resilience Act (DORA) will require most impacted companies to consider changes to their incident response plans. Our team covers this in our latest blog entry from Robert D. Maddox, Annabella Waszkiewicz , Stephanie Thomas, and Michiko W. https://lnkd.in/eXJVZrqG

EU Digital Operational Resilience Act (“DORA”): Incident and Cyber Threat Reporting and Considerations for Incident Response Plans

https://www.debevoisedatablog.com
Like Comment
To view or add a comment, sign in
Anil Markose

Defining the Future of Compliance
2mo
Report this post
Sorry I will miss so many of my friends at RSA this week, but given all the geo-political tension, I felt the need to be in Tampa this week to support SOF Week. Please DM me if you are in Tampa this week and want to connect. Warrior time!
1 Comment
Like Comment
To view or add a comment, sign in
Anil Markose

Defining the Future of Compliance
2mo
Report this post
Thoma Bravo has picked up some world-class cyber brands recently, and there is an opportunity to create an integrated platform play that moves the needle for customers. Time will tell if they realize the potential of this integration of portcos, or if it was a miss.

UK tech darling Darktrace rallies 17% after agreeing $5.32 billion private equity sale to Thoma Bravo

cnbc.com

1 Comment
Like Comment
To view or add a comment, sign in
Anil Markose

Defining the Future of Compliance
2mo
Report this post
Good post by Paul O'Rourke. I would also add the use of AI for machine based detection of possible phishing attempts, insider threat scenarios, and social engineering will improve and make the classic “weakest link” (the employee) much less susceptible. We can minimize the human error. The challenge will still be operationalizing new signals, and maintaining hygiene of the attack surface. Time to rethink / evolve a lot of things we have always been doing.

Paul O'Rourke

Chief Risk Officer | Risk Management | Digital Risk | Compliance | Controls
2mo

Cybersecurity training must evolve beyond phishing simulations. Real effectiveness comes from deepening employees' understanding of cyber threats, encouraging the adoption of practices to protect personal, organizational, and client data, and emphasizing the importance of proper cyber hygiene. Ultimately, it's the focus on trust and education that truly makes a difference. #Cybersecurity #CyberAwareness https://lnkd.in/gA87rjD6

Council Post: Rethinking Phishing Tests: A Call For Trust And Control In Cybersecurity

forbes.com

1 Comment
Like Comment
To view or add a comment, sign in
Anil Markose

Defining the Future of Compliance
3mo
Report this post
Cyber Royalty Alert!! Had a chance to spend a day with Edward Amoroso (one of the first CISOs ever, and now CEO of TAG Infosphere). Stay tuned for the video we did on a wide set of topics - from what we are doing at Abacode Cybersecurity & Compliance to my opinion on geopolitics (you know I have opinions!). Thanks David Neuman for the connection! #DigitalTrust #FutureofCompliance #Cyber
6 Comments
Like Comment
To view or add a comment, sign in

4,540 followers

92 Posts

View Profile Follow

Anil Markose’s Post

More Relevant Posts

Explore topics