Chris Ganacoplos with Preforce and Tim Schilbach with Penacity
Manage episode 440629119 series 2854272
Action Items
- [ ] Educate yourself on applicable frameworks like NIST SP 800-171.
- [ ] Consult with certified professionals to assess your organization's security gaps and develop a roadmap.
- [ ] Reach out to Chris and Tim on LinkedIn for cybersecurity guidance.
Outline
Introduction and Meeting Setup
- Scott MacKenzie introduces the Industrial Talk podcast, emphasizing its focus on industry professionals and their innovations.
- The meeting is held at OMG Reston, Virginia, and is the Q1 meeting with a focus on problem solvers.
- Scott introduces Chris and Tim, who are in the hot seat for the discussion.
- Chris and Tim share their backgrounds: Chris from Perforce, focusing on DevSecOps and continuous compliance, and Tim from Penacity, specializing in industrial security and critical infrastructure.
Background on DevSecOps and CMMC
- Chris explains his role at Perforce, focusing on DevSecOps and continuous compliance standards.
- Tim provides a detailed background on CMMC (Cybersecurity Maturity Model Certification), its purpose, and its relevance to the defense industrial base.
- Tim highlights the importance of CMMC in protecting industrial secrets and the implications for national security.
- The discussion touches on the dynamic nature of cybersecurity standards and the need for continuous compliance.
Challenges in Maintaining Compliance
- Chris discusses the importance of securing infrastructure and the role of policies in maintaining compliance.
- Tim explains the complexity of dynamic environments and the need for continuous documentation and monitoring.
- The conversation covers the challenges of ensuring compliance in rapidly changing environments and the importance of having a robust change control process.
- Tim emphasizes the role of technology platforms like Puppet in automating compliance checks and maintaining security baselines.
Creating a Culture of Compliance
- Scott and Tim discuss the importance of creating a culture of compliance within organizations.
- Tim highlights the role of leadership in driving a culture of compliance and the need for effective communication and collaboration.
- The conversation touches on the importance of automation in reducing costs and improving compliance.
- Tim shares insights on the role of consultants and technology partners in helping organizations navigate compliance challenges.
Practical Steps for Small Businesses
- Scott asks about practical steps for small businesses to start their compliance journey.
- Tim advises small business owners to get educated, consult with experts, and seek out certified professionals.
- The discussion includes the importance of understanding the business case for compliance and aligning technology with corporate governance.
- Tim emphasizes the need for authoritative sources of information and the role of the cyber accreditation board in providing guidance.
Conclusion and Contact Information
- Scott wraps up the discussion by emphasizing the importance of cybersecurity and the need for collaboration with experts like Chris and Tim.
- Scott provides contact information for Chris and Tim, encouraging listeners to reach out to them for further guidance.
- The podcast concludes with a reminder of the importance of staying informed and connected in the ever-evolving world of cybersecurity.
CHRIS GANACOPLOS' CONTACT INFORMATION:
Personal LinkedIn: https://www.linkedin.com/in/chris-ganacoplos-6776923/ Company LinkedIn: https://www.linkedin.com/company/puppet/ Company Website: https://www.puppet.com/TIM SCHILBACH'S CONTACT INFORMATION:
Personal LinkedIn: https://www.linkedin.com/in/dr-timothy-schilbach/ Company LinkedIn: https://www.linkedin.com/company/penacity-llc/ Company Website: https://www.penacity.us/PODCAST VIDEO:
https://youtu.be/ZTuvN1QcjQ0OTHER GREAT INDUSTRIAL RESOURCES:
NEOM: https://www.neom.com/en-us Hexagon: https://hexagon.com/ Siemens: https://www.siemens.com/global/en.html Palo Alto Networks: https://www.paloaltonetworks.com/ot-security-tco Palo Alto Networks Report HERE. Hitachi Digital Services: https://hitachids.com/ CAP Logistics: https://www.caplogistics.com/ Industrial Marketing Solutions: https://industrialtalk.com/industrial-marketing/ Industrial Academy: https://industrialtalk.com/industrial-academy/ Industrial Dojo: https://industrialtalk.com/industrial_dojo/ We the 15: https://www.wethe15.org/YOUR INDUSTRIAL DIGITAL TOOLBOX:
LifterLMS: Get One Month Free for $1 – https://lifterlms.com/ Active Campaign: Active Campaign Link Social Jukebox: https://www.socialjukebox.com/Industrial Academy (One Month Free Access And One Free License For Future Industrial Leader):
Business Beatitude the Book
Do you desire a more joy-filled, deeply-enduring sense of accomplishment and success? Live your business the way you want to live with the BUSINESS BEATITUDES...The Bridge connecting sacrifice to success. YOU NEED THE BUSINESS BEATITUDES!
TAP INTO YOUR INDUSTRIAL SOUL, RESERVE YOUR COPY NOW! BE BOLD. BE BRAVE. DARE GREATLY AND CHANGE THE WORLD. GET THE BUSINESS BEATITUDES!
200 episódios