Bare Metal Cyber Presents: Framework podcast

Artwork

Tech Podcasting Education Jason Edwards Cybersecurity NIST Technology Certification Hacking Blue Teaming Red Team

Player FM - Internet Radio Done Right

เพิ่มแล้วเมื่อ eight สัปดาห์ที่ผ่านมา

Content provided by Jason Edwards. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Jason Edwards or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.

<

<div class="span index">1</div> <span><a class="" data-remote="true" data-type="html" href="/series/state-secrets-inside-the-making-of-the-electric-state">State Secrets: Inside The Making Of The Electric State</a></span>

<div class="span index">1</div> <span><a class="" data-remote="true" data-type="html" href="/series/state-secrets-inside-the-making-of-the-electric-state">State Secrets: Inside The Making Of The Electric State</a></span> podcast artwork

<div class="span index">1</div> <span><a class="" data-remote="true" data-type="html" href="/series/state-secrets-inside-the-making-of-the-electric-state">State Secrets: Inside The Making Of The Electric State</a></span> podcast artwork

1
State Secrets: Inside The Making Of The Electric State

8 days ago8d ago

Weekly+

Step inside the world of The Electric State! Join host Francesca Amiker as she takes you behind the scenes of Anthony and Joe Russo’s epic new Netflix adventure. Over six in-depth episodes, explore how the filmmakers transformed Simon Stålenhag’s stunning graphic novel into a cinematic experience like no other. Exclusive interviews from the cast and crew—including Millie Bobby Brown, Chris Pratt, Stanley Tucci, and the Russo Brothers—will help break down the film’s jaw-dropping visuals, emotional core, groundbreaking technology AND the creative secrets that make The Electric State. Join us in the countdown to The Electric State premiering exclusively on Netflix on March 14th. State Secrets: Inside The Making of The Electric State coming March 7th.

Bare Metal Cyber Presents: Framework

Share

Content provided by Jason Edwards. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Jason Edwards or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.

Bare Metal Cyber Presents: Framework is your go-to podcast for mastering cybersecurity frameworks, with a special focus on the NIST Cybersecurity Framework (CSF). Hosted by Dr. Jason Edwards, this series breaks down each function, category, and subcategory to help professionals, educators, and organizations understand their structure and real-world applications. Each episode delivers clear, practical insights with examples that make cybersecurity frameworks more accessible and actionable. Whether you're new to cybersecurity or looking to refine your expertise, Framework equips you with the knowledge to strengthen security strategies and compliance efforts. Tune in and build your framework for success!

… continue reading

114 episodes

#Tech #Podcasting Education #Jason Edwards #Cybersecurity #NIST #Technology #Certification #Hacking #Blue Teaming #Red Team

Artwork

Bare Metal Cyber Presents: Framework

updated about a year ago

Share

Content provided by Jason Edwards. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Jason Edwards or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.

Bare Metal Cyber Presents: Framework is your go-to podcast for mastering cybersecurity frameworks, with a special focus on the NIST Cybersecurity Framework (CSF). Hosted by Dr. Jason Edwards, this series breaks down each function, category, and subcategory to help professionals, educators, and organizations understand their structure and real-world applications. Each episode delivers clear, practical insights with examples that make cybersecurity frameworks more accessible and actionable. Whether you're new to cybersecurity or looking to refine your expertise, Framework equips you with the knowledge to strengthen security strategies and compliance efforts. Tune in and build your framework for success!

… continue reading

114 episodes

#Tech #Podcasting Education #Jason Edwards #Cybersecurity #NIST #Technology #Certification #Hacking #Blue Teaming #Red Team

All episodes

×

Artwork

1
RC.CO-04 - Sharing Public Recovery Updates 15:03

5 weeks ago15:03

15:03

RC.CO-04 involves sharing public updates on incident recovery using approved channels and messaging, such as breach notifications or preventative steps, to inform affected parties or the broader community. This ensures transparency about recovery efforts and future safeguards, maintaining public trust. It addresses external expectations post-incident. This subcategory aligns with legal and risk requirements, ensuring communications are consistent and controlled to avoid misinformation. It supports reputation management by explaining recovery actions clearly and responsibly. RC.CO-04 bridges organizational recovery with public accountability.…

Artwork

1
RC.CO-03 - Communicating Recovery Progress 16:09

5 weeks ago16:09

16:09

RC.CO-03 ensures recovery activities and progress are shared with designated stakeholders—like leadership and suppliers—consistent with response plans and agreements. This includes regular updates on restoration status, adhering to contractual protocols for information sharing. It keeps all parties informed and aligned during recovery. This subcategory aligns communication with risk and operational needs, fostering trust and coordination with critical partners. It supports a unified recovery effort by ensuring transparency on progress and challenges. RC.CO-03 sustains stakeholder engagement through the restoration phase.…

Artwork

1
RC.RP-06 - Declaring Recovery Completion 16:45

5 weeks ago16:45

16:45

RC.RP-06 declares the end of recovery once predefined criteria are met, finalizing the process with a comprehensive after-action report detailing the incident, actions, and lessons learned. This formal closure ensures all steps are documented for review and improvement. It marks the return to full normalcy. This subcategory aligns with risk management by tying closure to measurable outcomes, ensuring accountability and transparency in recovery efforts. It supports future resilience by capturing insights for refinement. RC.RP-06 concludes recovery with clarity and foresight.…

Artwork

1
RC.RP-05 - Confirming System Restoration 17:01

5 weeks ago17:01

17:01

RC.RP-05 verifies the integrity of restored assets—checking for lingering threats or root causes—before returning systems to production, confirming normal operations. This involves testing restoration adequacy to ensure functionality and security are fully restored. It finalizes recovery with assurance. This subcategory aligns with risk goals by ensuring restored systems are secure and operational, preventing recurrence from overlooked issues. It supports confidence in recovery outcomes through rigorous validation. RC.RP-05 completes the restoration process with integrity.…

Artwork

1
RC.RP-04 - Restoring Critical Functions Post-Incident 17:54

5 weeks ago17:54

17:54

RC.RP-04 considers critical mission functions and cybersecurity risks to define post-incident operational norms, using impact records to prioritize restoration order. This involves collaboration with system owners to confirm successful recovery and monitor performance for adequacy. It ensures recovery aligns with strategic goals. This subcategory aligns restoration with risk and mission priorities, ensuring essential services resume first while maintaining security standards. It establishes a sustainable post-incident state, balancing functionality and protection. RC.RP-04 shapes a resilient operational recovery.…

Artwork

1
RC.RP-03 - Verifying Backup Integrity 17:54

5 weeks ago17:54

17:54

RC.RP-03 ensures backups and restoration assets are checked for integrity—free of compromise or corruption—before use in recovery efforts. This verification prevents reintroducing threats or using unreliable data, safeguarding the restoration process. It guarantees a clean starting point for recovery. This subcategory aligns with risk management by prioritizing the reliability of recovery tools, reducing the chance of failed restorations. It supports operational continuity by ensuring only trusted assets are deployed. RC.RP-03 underpins a secure recovery foundation.…

Artwork

1
RC.RP-02 - Prioritizing Recovery Actions 18:29

5 weeks ago18:29

18:29

RC.RP-02 involves selecting, scoping, and prioritizing recovery actions based on incident response plan criteria and available resources, adapting as needs shift. This ensures efforts focus on critical systems first, balancing speed with effectiveness in execution. It operationalizes recovery with precision. This subcategory aligns actions with risk and operational goals, ensuring resources address the most impactful areas efficiently. It supports flexibility by allowing reassessment of plans mid-recovery, optimizing outcomes. RC.RP-02 drives a targeted restoration process.…

Artwork

1
RC.RP-01 - Launching Incident Recovery Efforts 19:11

5 weeks ago19:11

19:11

RC.RP-01 initiates the recovery phase of the incident response plan once triggered, ensuring all responsible parties are aware of their roles and required authorizations. This begins during or after containment, focusing on restoring affected systems and services systematically. It transitions the organization from response to recovery. This subcategory aligns recovery with risk and operational priorities, ensuring a coordinated effort to regain normalcy with minimal disruption. It sets the stage for restoring availability, leveraging predefined plans for efficiency. RC.RP-01 launches the path to operational restoration.…

Artwork

1
RS.MI-02 - Eradicating Incident Threats 13:46

5 weeks ago13:46

13:46

RS.MI-02 ensures incidents are fully eradicated, removing threats like malware or unauthorized access through automated system features or manual responder actions. This can involve third-party support, such as MSSPs, to eliminate root causes and residual risks. It restores systems to a secure state. This subcategory aligns eradication with risk goals, ensuring complete threat removal to prevent recurrence, balancing speed with thoroughness. It supports recovery by clearing the path for safe restoration. RS.MI-02 finalizes the mitigation process with decisive action.…

Artwork

1
RS.MI-01 - Containing Cybersecurity Incidents 13:19

5 weeks ago13:19

13:19

RS.MI-01 focuses on containing incidents to prevent their expansion, using automated tools like antivirus or manual actions by responders to isolate threats. This can involve third-party assistance (e.g., ISPs) or redirecting compromised endpoints to remediation VLANs, limiting damage. It stops incidents from spreading further. This subcategory aligns containment with risk priorities, ensuring rapid action protects critical assets and minimizes disruption. It supports a proactive stance by leveraging both technology and human intervention as needed. RS.MI-01 is the first line of defense in incident mitigation.…

Artwork

1
RS.CO-03 - Sharing Information with Stakeholders 16:07

5 weeks ago16:07

16:07

RS.CO-03 involves sharing incident information with designated stakeholders—both internal, like leadership, and external, like ISACs—consistent with response plans and agreements. This includes voluntary sharing of anonymized attack data or updates on insider threats with HR, enhancing situational awareness. It ensures relevant parties stay informed. This subcategory strengthens response by aligning information flow with contractual rules and crisis protocols, such as supplier coordination. It promotes broader cybersecurity collaboration while protecting sensitive data. RS.CO-03 builds a network of informed responders and supporters.…

Artwork

1
RS.CO-02 - Notifying Stakeholders of Incidents 15:42

5 weeks ago15:42

15:42

RS.CO-02 ensures timely notification of internal and external stakeholders—like customers, partners, or regulators—about incidents, following breach procedures or contractual obligations. This includes notifying law enforcement when criteria and approvals dictate, maintaining transparency and compliance. It keeps affected parties informed and engaged. This subcategory aligns communication with legal and risk requirements, reducing delays in critical notifications that could impact trust or recovery. It supports coordinated response by ensuring stakeholders know their roles or risks. RS.CO-02 fosters a collaborative incident response ecosystem.…

Artwork

1
RS.AN-08 - Assessing Incident Magnitude 16:15

5 weeks ago16:15

16:15

RS.AN-08 estimates and validates an incident’s magnitude by assessing its scope and impact, searching other targets for indicators of compromise or persistence. This involves manual reviews or automated tools to confirm the extent of damage or spread, refining initial assessments. It quantifies the incident’s true reach. This subcategory aligns analysis with risk priorities, ensuring resources target the full breadth of an incident, from isolated to systemic effects. It supports effective mitigation by clarifying the scale of response needed. RS.AN-08 ensures a comprehensive grasp of incident consequences.…

Artwork

1
RS.AN-07 - Preserving Incident Data Integrity 15:50

5 weeks ago15:50

15:50

RS.AN-07 focuses on collecting and preserving incident data and metadata—such as source and timestamps—using chain-of-custody procedures to ensure integrity. This comprehensive gathering supports forensic analysis and compliance, protecting evidence from alteration. It ensures data remains a trustworthy resource for investigation. This subcategory aligns with risk and legal requirements, safeguarding critical information for root cause analysis and reporting. It enhances response accuracy by maintaining a pristine data set for review. RS.AN-07 underpins robust incident analysis and recovery.…

Artwork

1
RS.AN-06 - Recording Investigation Actions 16:13

5 weeks ago16:13

16:13

RS.AN-06 ensures that all investigative actions during an incident—like system checks or containment steps—are meticulously recorded, with integrity and provenance preserved. This involves immutable logs by responders and detailed documentation by the incident lead, safeguarding evidence for legal or audit purposes. It maintains a reliable investigation trail. This subcategory supports accountability and forensics by ensuring records are tamper-proof and traceable, aligning with risk management needs. It enables accurate post-incident reviews and lessons learned, enhancing future responses. RS.AN-06 upholds the credibility of incident investigations.…

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

Listen to 500+ topics

Quick Reference Guide

Top Podcasts

The Bill Simmons Podcast

Comedy of the Week

How Did This Get Made?

Doug Loves Movies

TED Talks Daily

NBC Nightly News with Lester Holt

The World This Hour

Daily Boost Motivation and Coaching

This American Life

Sword and Scale

Help/FAQ | Upgrade | Advertise

Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion

Science|Soccer|Sports|Storytelling|Technology|True Crime

Copyright 2025 | Sitemap | Privacy Policy | Terms of Service | | Copyright

Listen to this show while you explore