Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Podcast

Intelligence Preparation for Operational Resilience

  • June 2016
  • By Presenter Douglas Gray, Lisa R. Young
  • In this podcast, Douglas Gray, a member of the CERT Cyber Risk Management team, discusses how to operationalize intelligence products to build operational resilience of organizational assets and services using IPOR.
  • Cyber Risk and Resilience Management
  • Publisher: CERT
  • Listen

    Loading Podcast.....
  • Related

  • Abstract

    Intelligence preparation for Operational Resilience (IPOR) is a structured framework that decision makers can use to:

    •identify intelligence needs
    •consume the information received by intelligence sources
    •make informed decisions about the organization and courses of action

    In this podcast, Douglas Gray, a member of the CERT Cyber Risk Management team, discusses how to operationalize intelligence products to build operational resilience of organizational assets and services using IPOR.

  • Transcript

About the Speaker

  • Douglas Gray

    Douglas Gray

  • Lisa R. Young

    Lisa Young, Senior Member of the Technical Staff at the Software Engineering Institute at Carnegie Mellon University, has 20+ years of experience in the information technology and telecommunications industry. She holds the designation of Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), and is experienced in IT governance, information audit and security, and risk management. Ms. Young teaches the Operationally Critical Threat, Asset, and Vulnerability Evaluation (OCTAVE®) risk-based security assessment methodology at the Software Engineering Institute. Her current line of research provides guidelines for improving the way organizations manage the processes of security, IT Operations, business continuity, compliance, and audit to support the organization's mission and critical success factors.