Countermeasures or safeguards for detecting, preventing, and mitigating cyber threats and attacks (Protect assets)
Tanglebe things that used to protect assets
Hardware or software mechanisms that used to protect assets
Personnel or business practices that used to protect assets (policies, procedures, or guidelines)
Any measures that reduce the likelihood of a deliberate attack
Any measures that stop an attack from occurring
Any measures that detect an attack
Any measures that reverse the impact of an incident after it has happened
Any measures that bring the system back to how it was (Normal condition) before the attack
- Deterrent
- Warning signs
- Preventative
- Fences
- Detective
- CCTV
- Corrective
- Fire suppression system
- Recovery
- Disaster recovery site
- Repair physical damage
- Deterrent
- Banners
- Preventative
- Firewall
- Detective
- SIEM
- IDS
- Honeypots
- Corrective
- Patches
- Quarantining a malware
- Recovery
- Backup
- Deterrent
- Policies and procedures
- Preventative
- Separation of duties
- Data classification
- User training
- Detective
- Audit logs
- Corrective
- Incident response plan
- Business continuity plan
- Recovery
- Disaster recovery plan
b0976734-39b8-4c37-a212-78ac51be2995