It’s a new year, and you know what happens in January? The number of gym memberships increases, diets are defined, and bad habits disappear. At least for the first month of the year.
Published on Jan 11, 2022The steps to a healthy lifestyle are pretty simple, but what makes it difficult is that it requires consistency and repetitive, repetitive, repetitive habits. Too often, people look for a quick fix with a new diet or purchase some fancy gym equipment, only to eventually be put aside. It’s not that different from what we see in the cybersecurity space; most organizations have a cybersecurity hygiene problem and are always looking for a new methodology, technology, or vendor claiming to solve the problem with artificial intelligence, machine learning, etc.
I’m a middle-aged man with three young kids, and trying to stay healthy can be challenging. I read the article https://www.healthline.com/health/mens-health#doctor, which provides some essential health tips for me to “stay alive.” The health recommendations in the article don’t require a significant investment of technology or the latest and greatest gizmos; it requires focusing on the basics every day repetitively and consistently.
Let’s take the health article and relate it to cybersecurity. We’ll use the National Institute of Standards and Technology (NIST) cybersecurity framework as well as the Center for Internet Security (CIS) critical security controls (CSC). These can be related to NIST 800–53 controls, but for simplicity’s sake, CIS CSC is more streamlined and is typically associated with best practices for an organizational cybersecurity hygiene baseline.
You might need to stretch your imagination.
Here are three takeaways to consider as we move into 2022 to improve a cybersecurity program and emphasize cybersecurity hygiene.
After the first six months: