Skip to main content

Concepts of Cybersecurity

Q:  What is cybersecurity.?

A: Cyber security, also referred to as information technology security, focuses on protecting Information technology assets and its information Cybersecurity is the collection policies, procedures, guidelines and risk management approaches. The NIST framework includes Identify, Protect, Detect, Respond and Recover.

Q: What is NIST framework IDENTIFY


A: NIST Framework identify includes 

  •  Identifying physical and software assets
  •  Identifying cybersecurity policies
  •  Identifying asset vulnerabilities
  •  Identifying a Risk Management Strategy
  •  Identifying authorization
  •  Identifying authentication roles

Q: What is NIST Cybersecurity Framework  - PROTECT
A: NIST framework protect includes 
  • Protections for Identity Management
  • Protection for physical assets
  • Protection for data
  • Protect technology
  • Proper change management
  • Disaster recovery 
Q: What is NIST Cybersecurity Framework  - DETECT
A: NIST framework detect includes
  • Protections for Identity Management
  • Protection for physical assets
  • Protection for data
  • Protect technology
  • Proper change management
  • Disaster recovery

Labels:

Comments

Post a Comment

Popular posts from this blog

Understanding Ransomware

Ransomware is a type of malicious software designed to encrypt or block access to a victim's files or entire computer system. The attackers demand a ransom payment, typically in cryptocurrencies, in exchange for providing the decryption key or restoring access. This insidious form of cyberattack has evolved over the years, becoming more sophisticated and causing significant disruption.   The impact of ransomware attacks can be devastating on multiple levels. For individuals, it can result in the loss of personal data, compromising sensitive information like financial records or personal documents. In businesses, ransomware can disrupt operations, leading to financial losses, reputational damage, and potential legal implications. Critical infrastructure, such as healthcare or government systems, can also become targets, risking public safety and national security.
Post a Comment
Read more

Information security !!!

 
Post a Comment
Read more

Different types of cyber attacks

Malware attacks: Malware attacks involve the use of malicious software, such as viruses, worms, or ransomware, to damage or disrupt systems or steal sensitive data. Phishing attacks: Phishing attacks involve the use of fake emails or websites to trick individuals into revealing sensitive information, such as passwords or financial data. Denial of service (DoS) attacks: DoS attacks involve flooding a network or website with traffic in an attempt to make it unavailable to users. SQL injection attacks: SQL injection attacks involve injecting malicious code into a database through a website or application in order to gain unauthorized access or steal sensitive data. Man-in-the-middle (MitM) attacks: MitM attacks involve intercepting communications between two parties in order to gain access to sensitive information or to alter the content of the communication. Insider attacks: Insider attacks involve the use of an individual's authorized access to systems or data to compromise the secu...
Post a Comment
Read more