Skip to main content

Concepts of Cybersecurity

Q:  What is cybersecurity.?

A: Cyber security, also referred to as information technology security, focuses on protecting Information technology assets and its information Cybersecurity is the collection policies, procedures, guidelines and risk management approaches. The NIST framework includes Identify, Protect, Detect, Respond and Recover.

Q: What is NIST framework IDENTIFY


A: NIST Framework identify includes 

  •  Identifying physical and software assets
  •  Identifying cybersecurity policies
  •  Identifying asset vulnerabilities
  •  Identifying a Risk Management Strategy
  •  Identifying authorization
  •  Identifying authentication roles

Q: What is NIST Cybersecurity Framework  - PROTECT
A: NIST framework protect includes 
  • Protections for Identity Management
  • Protection for physical assets
  • Protection for data
  • Protect technology
  • Proper change management
  • Disaster recovery 
Q: What is NIST Cybersecurity Framework  - DETECT
A: NIST framework detect includes
  • Protections for Identity Management
  • Protection for physical assets
  • Protection for data
  • Protect technology
  • Proper change management
  • Disaster recovery

Labels:

Comments

Post a Comment

Popular posts from this blog

Top Cybersecurity Job Roles & Skills Required in 2025

Top Cybersecurity Job Roles & Skills Required in 2025 Security Analyst Responsibilities: Monitor security incidents and events Conduct vulnerability assessments and penetration testing Implement security controls and policies Required Skills: SIEM tools (e.g., Splunk, Sumo Logic) Network security fundamentals Incident response and threat intelligence Security Engineer Responsibilities: Design and implement security solutions Develop and enforce security policies Ensure system security compliance Required Skills: Firewalls, IDS/IPS, and endpoint security Scripting languages (Python, Bash, PowerShell) Cloud security (AWS, Azure, GCP) Penetration Tester (Ethical Hacker) Responsibilities: Conduct security testing to identify vulnerabilities Simulate cyberattacks to evaluate security posture Document findings and provide mitigation strategies Required Skills: Ethical hacking (CEH, OSCP certification preferred) Penetration testing tools (Metasploit, Burp Suite, Nmap) Knowledge of web app...
Post a Comment
Read more

Understanding Ransomware

Ransomware is a type of malicious software designed to encrypt or block access to a victim's files or entire computer system. The attackers demand a ransom payment, typically in cryptocurrencies, in exchange for providing the decryption key or restoring access. This insidious form of cyberattack has evolved over the years, becoming more sophisticated and causing significant disruption.   The impact of ransomware attacks can be devastating on multiple levels. For individuals, it can result in the loss of personal data, compromising sensitive information like financial records or personal documents. In businesses, ransomware can disrupt operations, leading to financial losses, reputational damage, and potential legal implications. Critical infrastructure, such as healthcare or government systems, can also become targets, risking public safety and national security.
Post a Comment
Read more

Information security !!!

 
Post a Comment
Read more