Updating the "plumbing" is not sexy. Looking at measures being put in place to avoid the worst case or deal with it when it happens is not fancy. Educating people and reminding them on being alert is exhausting.

However, the topic of Security and Security Architecture is one of the most important things to do, now that we outgrow the industrial age and move into the information age. In this episode of the What's Your Baseline Podcast we are talking with Rick Smith about Security Architecture.

Rick has over 18 years of experience in managing information systems to include, developing policies, portfolio management, writing programs and procedure development for information assurance programs. His various roles include a Network Administrator/Manager, Threat Analyst Subject Matter Expert, IA Strategic Planning and Database Manager. He is proficient in certification and accreditation policy and procedure including DoD policy, intelligence community policy, United States Postal Service (USPS) AS805, and NIST guidelines. He also has experience in cyber security architecture development for these same organizations.

Rick has developed and taught CISSP classes. He has developed his own curriculum and approach in helping candidates become a CISSP.

In this episode we are talking about:

• What is Security Architecture?
• Define mission, threat
• Policies and SOPs need accountability, the need for education
• Digital natives and their approach to security - leading to decentralized security architecture
• How to approach threats
• How to mature your organization’s security by using NIST’s Cyber Security Framework CMMC and security self assessments
• Implement the framework

Rick can be found on LinkedIn here: https://www.linkedin.com/in/ricksmth477/.

The full show notes, including graphics, further links, credits, and transcript, are available at whatsyourbaseline.com/episode31.