CCT 352: Data Security Controls and Compliance Requirements for the CISSP (Domain 2.3) - REPLAY

CCT 352: Data Security Controls and Compliance Requirements for the CISSP (Domain 2.3) - REPLAY

From CISSP Cyber Training Podcast - CISSP Training Program by Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur

May 25, 2026 · 40 min · Season 3 · Episode 352

About this episode

The episode discusses the impact of third-party breaches on security programs and emphasizes the importance of data security controls and compliance requirements.

Send us Fan Mail Your security program can be airtight and still get wrecked by someone else’s breach. We open with a Wired-style reality check: third-party app ecosystems and data brokers collecting location analytics at massive scale, then getting hacked or resold in ways your users never expected. If your organisation issues mobile devices, this is where security awareness, MDM controls, and clear “don’t allow tracking unless required” guidance stops being a nice-to-have and starts becomin...

People in this episode

Host: Shon Gerber

Topics covered

  • data security controls
  • compliance requirements
  • third-party app ecosystems
  • data brokers
  • mobile device management
  • security awareness

Keywords

  • CISSP
  • data security
  • compliance
  • third-party breaches
  • mobile devices
  • security awareness
  • MDM controls

Mentioned in this episode

Organizations: Wired

More episodes of CISSP Cyber Training Podcast - CISSP Training Program

Explore listener stats, chart rankings, contacts and more on the CISSP Cyber Training Podcast - CISSP Training Program podcast page.