Term
| Detective Control Example |
|
Definition
- intrusion detection system
- intrusion prevention system |
|
|
Term
|
Definition
| -A control that provides an alternate solution to a countermeasure that is too difficult or expensive to implement |
|
|
Term
|
Definition
| -A security control is designed to mitigate any damage that may be created by an attack |
|
|
Term
|
Definition
-A security control that tells you when a particular event occurs
-May record for later anlysis |
|
|
Term
|
Definition
-A type of control that physically separates people from your systems
-Designed to keep someone from doing something |
|
|
Term
|
Definition
-Can serve in multiple categories and provide more than one function
-A security guard is preventative, deterrent, and detective |
|
|
Term
| Compensating Control Example |
|
Definition
-Card key instead of security guard
-Application white listing instead of replacing operating systems |
|
|
Term
|
Definition
| -Hardware or software controls |
|
|
Term
| Physical Control Examples |
|
Definition
-Locks and fences
-Man Traps
-CCTV
-Security Guards |
|
|
Term
| Administrative Control Examples |
|
Definition
-Policies
-standards
-processes
-procedures
-risk management
-Account management
-Regulatory Controls |
|
|
Term
| Deterrent Control Examples |
|
Definition
|
|
Term
| Preventative Control Example |
|
Definition
-a door lock
-a security guard
-a firewall |
|
|
Term
| Corrective Security Control Example |
|
Definition
-using backups to restore data
-Restoring a snapshot to recover a system |
|
|
Term
|
Definition
| A type of control that may not necessarily prevent someone from performing an attack, but it may give them a warning |
|
|
Term
|
Definition
| Controls that can be done at a management level to control access, or some type of behavior |
|
|
Term
|
Definition
| Controls that you can touch |
|
|
Term
| Technical Control Examples |
|
Definition
Endpoint protections
-AV Software
-Encryption
-Access Control
-IPS/IDS
-Firewalls |
|
|
