Episode 176: A Cybersecurity Journey of Incremental Wins
In episode 176 of Cybersecurity Where You Are, Sean Atkinson and Tony Sager sit down with Brock Boggs, Director of Technology at Cityscape Schools and Multi-State Information Sharing and Analysis Center® (MS-ISAC®) member, and Maureen Kunac, Senior Product Manager at the Center for Internet Security® (CIS®). Together, they discuss Brock's story of using incremental wins to advance his organization on its cybersecurity journey.
Here are some highlights from our episode:
- 02:10. Getting started making the largest measurable impact with CIS-CAT® Pro Assessor
- 03:52. Implementation Group 1: A filter for prioritizing secure configuration management efforts
- 09:16. The use of essential cyber hygiene to build an on-ramp to a security controls program
- 11:18. Navigating breakage, dependency, and other principles of change management
- 13:37. Lessons learned from beta testing and enterprise rollout of security changes
- 22:24. Advice: How to start on a journey of system hardening with measurable impact
Resources
- Episode 163: K-12 Cybersecurity Made Practical
- Formalizing K-12 Cybersecurity Policies in Less Time
- CIS-CAT® Pro Assessor
- CIS-CAT Pro Results Focus on CIS Controls IG1
- CIS Critical Security Controls®
- Guide to Implementation Groups (IG): CIS Critical Security Controls v8.1
- What SLTTs Should Know About the FREE CIS SecureSuite Membership
If you have some feedback or an idea for an upcoming episode of Cybersecurity Where You Are, let us know by emailing [email protected].
As of June 23, 2025, the MS-ISAC has introduced a fee-based membership. Any potential reference to no-cost MS-ISAC services no longer applies.