Matt Morton
HCISPP, CISM, CISSP, CGEIT Senior Strategic Consultant, Vantage Technology Consulting Group
Denver, Colorado, United States
Actions
Matt Morton has more than 20 years of experience in IT
with over half in management. With a strong focus on
information security and IT management, organizational
development and strategic technology architecture, Matt’s
hands-on management savvy, innovative strategic expertise
helped develop a strong record of delivering a balance between security
and value to organizations. Matt has served as a CISO, CIO, and IT leader.
Matt likes to fly fish and hike whenever he can. Matt is a frequently requested speaker on the topics of security and IT governance. Matt is a member of the Denver ISACA chapter. Matt holds a Master's degree from Upper Iowa University and is certified in HCISPP, CISM, CISSP, CGEIT.
Area of Expertise
Topics
Great-grandma’s secret sauce: Your guide to CMMC, HITRUST, NIST and Everything in Between.
My great-grandmother made the best marinara sauce. The recipe has been handed down through multiple generations but was never written down. This recipe was effective and useful but after her passing, it has changed and has been difficult to replicate. Many organizations security compliance programs suffer from the same circumstance.
Several security standards like CMMC, NIST 800-171 and HITRUST continue to impact multiple market verticals such as education, healthcare, and defense. It is vitally important that the effort we spend on compliance be directly relevant to securing our institutions. This presentation will attempt to describe the different flavors of standards, show where they are similar, and how you can develop a recipe for compliance with all of them. Compliance is only the first step in this journey though as this presentation will also touch on what is necessary to do immediately and how you can begin to make lasting changes to your security program for your organization. The presentation uses the metaphor of inter-generational recipes to show how to begin the journey to a secure and compliant future for your organization now and perhaps even for generations.
5 Open Source Tools to Improve Application Security
Application Security is an integral piece of the security plan that sometimes becomes difficult to follow through with. Before you buy enterprise tools, consider using open source or free tools to get started. This session will discuss/demo 5 open source tools that you can use to improve the security of the applications that your organization develops immediately. Starting with the application's brainstorming phase and ending with its deployment, 5 open-source tools are discussed and demoed on how you can begin to use them to improve application security and reduce vulnerabilities. A facilitated Q&A is also provided to develop a better understanding of the tools and their implementation. Key questions like what is needed from an infrastructure perspective and what skills are needed to implement and maintain them will be discussed. Open source tools are not meant to replace their more mature(sometimes) licensed versions; however, they are an excellent starting point to understand better what you are trying to accomplish with them and better understand what you actually need before you actually provide an expensive enterprise toolset.
RMISC 2021 Virtual Conference Sessionize Event
Matt Morton
HCISPP, CISM, CISSP, CGEIT Senior Strategic Consultant, Vantage Technology Consulting Group
Denver, Colorado, United States
Actions
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top