What not to do in cybersecurity compliance

Marcus Ranum, chief security officer, Tenable Network Security

wfedstaff | April 17, 2015 3:38 pm

The Federal Information Security Management Act created a cybersecurity checklist for agencies to comply with, but some agencies might be going about it all wrong. Continuous monitoring produces data logs that are hard to figure out. Compliance and big data sets won’t produce cybersecurity.

Marcus Ranum, chief security officer of Tenable Network Security, explains to The Federal Drive with Tom Temin and Emily Kopp what not to do.


Automated security a recipe for disaster, experts say