Network Appliances
Data Roles
Cryptography
Security Controls
Misc
100

This tool is designed to only monitor, detect, and alert users of a potential incursion on a device

HIDS

100

Person responsible for the content and quality of the data

Data owner

100

This Symmetric Encryption Algorithm is the most secure for VPN connections

AES256

100

Type of control that will stop a malicious act from happening

Preventitive

100

The ability to install an app from a 3rd party vendor outside your normal repository

Side-Loading

200

This tool is designed to recognize and stop an intrusion into a network

NIPS

200

Maintains the security controls in place to protect the data

Data Custodian

200

The art of hiding data inside something else

Steganography

200

Control that includes motion sensors and CCTV cameras

Detective

200

Online resource used to assist developers in securing web sites

OWASP (Open Web Application Security Project)

300

Tool designed to distract attackers, keeping them away from the real network and potentially revealing information about themselves.

Honeynet

300

Ensures data is classified and protected properly through policy

Data Steward

300

A way to verify the integrity of your downloaded data

Hashing

300

Control that could include a mobile patrol, cameras, and signs

Deterrent

300

Cloud model that provides clients with servers, storage, and network appliances

IaaS

400

This device is designed to provide caching and content filtering

A Proxy Server

400

Person responsible for how and why data is processed 

Data Controller

400

Key that recipient of a message uses to decrypt the digital signature from the sender using asymmetric cryptography

Sender's Public Key

400

Type of control where a technician replaces a broken lock

corrective

400

Component of IPSec used to protect information sent out of network, as well as authenticating recipients and verifies data origin

Encapsulating Security Payload

500

A component that's used to manage access to devices inside a segmented security zone

Jumpbox/Jump server


500

Role that maintains integrity and confidentiality by ensuring data is handled in accordance with policies and regulations

Privacy Control Officer

500

Web based tool to verify authenticity of CA certificates (most accurate)

OCSP (Online Cert Status Protocol)

500

A mobile guard patrolling in a security zone due to CCTV system being inoperative

Compensating

500

Research to ensure you are complying with all aspects of a standard or law

Due Diligence

M
e
n
u