Hashtag Realtalk with Aaron Bregg
Welcome to my little corner of the Internet!
In this channel I give 'real talk' about information security and technologies that impact both your business and personal lives. I try and focus on issues and items that can help you become more 'security curious'. The ultimate goal of help protect your personal and professional well being.
Employer Disclaimer - The opinions and views expressed in the podcast are not necessarily the views of my current employer, Corewell Health.
Legal Disclaimer - All of the security advice that I give is 'as is' and does not constitute real paid professional advice. As with everything security related, please seek second opinions from paid professionals. Photo by
Hashtag Realtalk with Aaron Bregg
Episode 33 - How to Build a Risk Management Program
In this episode I have a co-host, Anthony Coggins, join me to talk with Steve Tobias about the first steps to take in building a Risk Management program. Anthony is the Security Architect for Acrisure and Steve is one of the Lead Risk Analysts for Spectrum Health.
Talking Points:
Looking at Risk Management through the eyes of a brand new startup company we discuss:
- What is the first thing you should do?
- Awareness of understanding your risk posture
- Do it internal or hire a partner company?
- What documents do you need to start off with?
- What are your security 'requirements' you need to discover?
Risk Management Resource Links:
Why CISOs must be students of the business | CSO Online
5 rules for a healthy CIO-CISO relationship | The Enterprisers Project
Small Business Cybersecurity Corner | NIST - great resource to get started – free
Stay safe from cybersecurity threats (sba.gov) – great resource to get started – free