The 12 Days of a Cyber Security Christmas

In Cyber Security Threats by Stephanie Ewing

By the time Christmas Eve approaches, you may be suffering from Christmas music fatigue. Fear not, we have a fresh take on an old favorite to keep the holiday spirit alive and well. Delta Risk Senior Associate, Stephanie Ewing-Ottmers, presents a security-focused version of the twelve days of Christmas.

On the first day of Christmas, my CISO gave to me — a documented IRP. *
On the second day of Christmas, my CISO gave to me — two-factor authentication a permitting and a documented IRP.
On the third day of Christmas, my CISO gave to me — three policies a drafting, two-factor authentication a permitting, and a documented IRP.
On the fourth day of Christmas, my CISO gave to me — quarterly tabletop exercises a practicing, three policies a drafting, two-factor authentication a permitting, and a documented IRP.
On the fifth day of Christmas, my CISO gave to me — five cyber security awareness training modules a viewing, quarterly tabletop exercises a practicing, three policies a drafting, two-factor authentication a permitting, and a documented IRP.
On the sixth day of Christmas, my CISO gave to me — six IPS devices a detecting, five cyber security awareness training modules a viewing, quarterly tabletop exercises a practicing, three policies a drafting, two-factor authentication a permitting, and a documented IRP.
On the seventh day of Christmas, my CISO gave to me — seven firewalls a blocking, six IPS devices a detecting, five cyber security awareness training modules a viewing, quarterly tabletop exercises a practicing, three policies a drafting, two-factor authentication a permitting, and a documented IRP.
On the eighth day of Christmas, my CISO gave to me — eight IT controls audits a passing, seven firewalls a blocking, six IPS devices a detecting, five cyber security awareness training modules a viewing, quarterly tabletop exercises a practicing, three policies a drafting, two-factor authentication a permitting, and a documented IRP.
On the ninth day of Christmas, my CISO gave to me — nine SOC analysts a watching, eight IT controls audits a passing, seven firewalls a blocking, six IPS devices a detecting, five cyber security awareness training modules a viewing, quarterly tabletop exercises a practicing, three policies a drafting, two-factor authentication a permitting, and a documented IRP.
On the tenth day of Christmas, my CISO gave to me — ten risks a mitigating, nine SOC analysts a watching, eight IT controls audits a passing, seven firewalls a blocking, six IPS devices a detecting, five cyber security awareness training modules a viewing, quarterly tabletop exercises a practicing, three policies a drafting, two-factor authentication a permitting, and a documented IRP.
On the eleventh day of Christmas, my CISO gave to me — 11 hackers a prosecuting, ten risks a mitigating, nine SOC analysts a watching, eight IT controls audits a passing, seven firewalls a blocking, six IPS devices a detecting, five cyber security awareness training modules a viewing, quarterly tabletop exercises a practicing, three policies a drafting, two-factor authentication a permitting, and a documented IRP.
On the 12th day of Christmas, my CISO gave to me — 12 dancing cyber security unicorns!, 11 hackers prosecuted, ten risks mitigated, nine SOC analysts watching, eight IT controls audits passed, seven firewalls blocking, six IPS devices detecting, five cyber security awareness training modules viewed, quarterly tabletop exercises practiced, three policies drafted, two-factor authentication a permitting, and a documented IRP.

*Incident Response Plan

From everyone at Delta Risk, we wish you and yours a happy, safe, secure, and prosperous holiday season!

Share this Post