DevSecOps Interview Q&A: Bonus

Laxfed Paulacy
6 min readJan 20, 2023

--

Bonus security standards and CI/CD explanations in this one, bruh!

Previous

What other security standards are commonly used?

There are many other security standards and regulations that organizations must comply with, depending on the industry and the type of data they handle. Some examples include:

  • ISO 27001: This is an international standard for information security management. It provides a framework for organizations to implement and maintain effective controls to protect sensitive information from unauthorized access, use, disclosure, disruption, modification, or destruction.
  • NIST (National Institute of Standards and Technology) Cybersecurity Framework: This framework provides a set of best practices for organizations to implement and maintain effective controls to protect sensitive information from cyber threats.
  • FedRAMP (Federal Risk and Authorization Management Program): This is a security standard that is specifically designed for organizations that provide cloud services to the U.S. government. It provides a framework for organizations to implement and maintain effective controls to protect sensitive government data from unauthorized access, use, disclosure, disruption, modification, or destruction.
  • SOC 1/SSAE 18 (Statement on Standards for Attestation Engagements 18): This is a security standard that is specifically designed for organizations that provide services to other organizations. It provides a framework for organizations to implement and maintain effective controls to protect sensitive data from unauthorized access, use, disclosure, disruption, modification, or destruction.
  • GLBA (Gramm-Leach-Bliley Act) : This is a security standard that is specifically designed for financial institutions. It provides a framework for organizations to implement and maintain effective controls to protect sensitive financial data from unauthorized access, use, disclosure, disruption, modification, or destruction.

--

--

Laxfed Paulacy

Delivering Fresh Recipes, Crypto News, Python Tips & Tricks, and Federal Government Shenanigans and Content.