Definitions
Is a fundamental principle of cybersecurity that ensures data remains accurate, consistent, and unaltered unless modified by authorized individuals
what is integrity?
Attackers with a political, social or environmental ideological agenda
what is a hacktivist?
overarching starting point for security that shapes the behavior of the organization, systems, and personnel
What are managerial controls?
Primary framework, uses 7 basic steps, cornerstone of the Army's cybersecurity
what is NIST risk management framework?
Refers to the framework, policies, and procedures that ensure an organization's security strategy aligns with its overall business objectives, regulatory requirements, and risk management priorities
what is governance?
Is the process of verifying the identity of a user, device, or system before granting them access to resources
what is authentication?
Attackers seeking financial gain, usually through extorsion
what is organized crime?
Measures implemented through technology, also known as logical controls, work at the bit level
what are technical controls?
Based off of NIST, has layers of security controls and processes required by DoD, emphasizes reciprocity
what is DoD risk management framework?
Defines how users are permitted to use an organizations IT assets (computers, networks, internet access, email, ect.)
What is acceptable use policy (AUP)?
The process of tracking and recording user activities within a system to ensure security, compliance, and accountability
What is Accounting?
AKA "script kiddies", attackers who lack knowledge of how the protocols and technologies work.
What are unskilled attackers?
Desgined to psychologically discourage attcker from attacking
what is a deterrent control?
AR 25-2 and AR 25-1, army cybersecurity policy, uses army regulation and policies to address emerging threats and vulnerabilities
what is Army Cybersecurity directives and regulations?
Ensures an organization can continue critical operations during and after a disruption
what is a business continuity plan?
The process of determining what resources a user or system is allowed access after authentication has been successfully completed
What is authorization?
Attackers within the employ of target organization
What are insider threats?
proactive control, designed to stop an attack before it starts
what is a preventative control?
Best practice for adoption for establishing and maintaining a robust security management system, uses framework alignment to help algin army security practices with internationally recognized best practices
what is ISO 27001/2?
focuses specifically on restoring IT infrastructure and data after a major disaster
what is disaster recovery plan?
a security principle that ensures a message or action can be undeniable attributed to its sender
what is Non-Repudiation?
Non-IT department personnel who bypass the IT department to setup non-authorized technologies
What is Shadow IT?
what is a detective control?
supply chain security designed to assess and enhance cybersecurity posture and has a contractual requirement
what is cybersecurity maturity model certification (CMMC)?
Defines the procedures for identifying containing and recovering from security incidents
what is an incident response plan?