A04-006-security-controls.md

"Unless cybersecurity controls can guarantee our safety, it is irresponsible to merge industrial protocols with vulnerable IT technologies"

Filip Maertens - founder of Securax

Cybersecurity controls are the countermeasures that companies implement to detect, prevent, reduce, or counteract security risks. They are the measures that a business deploys to manage threats targeting computer systems and networks. The controls keep on changing to adapt to an evolving cyber environment. Given the growing rate of cyberattacks, data security controls are more important today than ever.

Security Controls

Once an organization defines control objectives, it can assess the risk to individual assets and then choose the most appropriate security controls to put in place. One of the easiest and most straightforward models for classifying controls is by type: physical, technical, or administrative, and by function: preventative, detective, and corrective.

Tähän tulee Flashcards Grid -komponentti, jonka tiedot alla

Physical Controls Describes anything tangible that's used to prevent or detect unauthorized access to physical areas, systems, or assets

Technical Controls Include hardware or software mechanisms used to protect assets

Administrative controls Refers to policies, procedures, or guidelines that define personnel or business practices in accordance with the organization's security goals.

Control Functions

There are several functions of security controls such as preventive, detective, and corrective controls.

  1. Preventive Control: It stops any unwanted or unauthorized activity from happening. These controls include firewalls, intrusion prevention systems, and antivirus software.
  2. Detective Control: It detects and alters if any authorized or unwanted is happening or happened. These controls include but not limited to IDS and honeypots.
  3. Corrective Controls: This control helps in recovering or restore resources, followed by an unwanted incident, to their original state. These controls include Antivirus, patch system, incident response solutions,

Tässä kohtaa Table, jonka tiedot alla Source Control Types:

  • Physical
  • Technical
  • Administrative

Control Functions:

  • Preventive

  • Physical: Fences, gates, locks

  • Technical: Firewall, IPS, MFA, antivirus

  • Administrative: Hiring and termination policies, separation of duties, data classification

  • Detective

  • Physical: CCTV and surveillance camera logs

  • Technical: Intrusion detection systems, honeypots

  • Administrative: Review access rights, audit logs, and unauthorized changes

  • Corrective

  • Physical: Repair physical damage, re-issue access cards

  • Technical: Patch a system, terminate a process, reboot a system, quarantine a virus

  • Administrative: Implement a business continuity plan or incident response plan

Watch a Short Video About Security Controls

Youtube-video: https://www.youtube.com/watch?v=DogZBybgd7U

Knowledge Check

Tässä Matching-tehtäväkomponentti

Tässä Matching-tehtäväkomponentti