ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "DE.CM-03 - Tracking Personnel and Technology Usage "
Episode Synopsis
DE.CM-03 monitors personnel activity and technology usage to identify potentially adverse events, such as insider threats or policy violations, using tools like behavior analytics and access logs. This includes tracking unusual access patterns or interactions with deception technologies, like honeypot accounts, to detect malicious intent. It focuses on the human element of security risks.This subcategory enhances insider threat detection by providing visibility into user actions, ensuring deviations from norms trigger investigation. It aligns monitoring with risk strategies, prioritizing high-privilege users or critical systems. DE.CM-03 strengthens defenses against both intentional and unintentional personnel-related risks.
More episodes of the podcast Framework: The NIST Cybersecurity Framework (CSF)
Introduction to the NIST CSF
23/02/2025
Introduction to Gap Assessments
23/02/2025
The Fundamentals of Cybersecurity Controls
23/02/2025
Cybersecurity Maturity
23/02/2025
Cybersecurity Risk Management
23/02/2025
Introduction to NIST 800-53
23/02/2025
Introduction to NIST CSF Profiles
23/02/2025
In God we trust