CSEC 600 RMF

0.0(0)

Studied by 0 people

Learn

Practice Test

Spaced Repetition

Match

Flashcards

Card Sorting

1/19

There's no tags or description

Looks like no tags are added yet.

Study Analytics

Name	Mastery	Learn	Test	Matching	Spaced

No study sessions yet.

20 Terms

1

New cards

risk management

to wht extent is it worth spending resources on cybersecurity in exchange for spending less resources if a cyber incident occurs

2

New cards

strategic risks

risks that affect an organizations long term goals and mission, often related to chnages in the business environment, compeittion, or poor strategic planning

3

New cards

operational risks

risks arising from failures in internal processes, systems, or human error, includes IT system failures, supply chain disruptions, or flawed procedures

4

New cards

compliance risks

risks of legal or regulatory sanctions due to non-compliance with laws, policies or standards; often stems from data protection laws like GDPRor industry rules like HIPAA

5

New cards

financial risks

risks that directly impact the financial standing of the organizations, such as fraud, market fluctuations, or invetsment losses due to cyber incidents

6

New cards

reputational risk

risks that harm an organizations public image or trustworthiness, often triggered by data brea hes, unethical behavior, or poor incident handling

7

New cards

intentional cyber attacks

malware, phishing, insider threats

8

New cards

accidental cyber threats

human error, misconfiguration, unaccounted edge cases

9

New cards

hacktivists

intentional threat actor, political and idealogical motivation

10

New cards

intentional threat actors

hacktivists, nation-state actors, organized crime, insider threats, and script kiddies

11

New cards

unintentional threat actors

employees, supply chain, natural disasters

12

New cards

identifying threat vulnerabilities

asset inventory, threat modeling, vulnerability scanning, manual testing, patch management review, configuration reviews

13

New cards

cybersecurity governance

who has authority and responsibility in the organization,

14

New cards

compliance

adherence to laws, regulation, and industry standards

15

New cards

frameworks

formalized documents outlining security recommendations, requirements, or information

16

New cards

NIST CSF

high level framework for overall cybersecurity strategy, core functions: govern, identity, protect, detect, respond, recover

17

New cards

NIST special publications

cybersecurity requirements for federal contractors

18

New cards

NIST 800-53

recommended/required security controls for federal contractos

19

New cards

NIST 800-171

recommended/required security controls for protecting CUI

20

New cards

NIST 800-172

additional security controls for further protecting CUI

Explore top notes

Invisible Man Chapter 17

Updated 902d ago

Note

Pommes, Pommes, Pommes Literary Analysis Notes

Updated 956d ago

Note

Science Notes - Sem 2 2024

Updated 238d ago

Note

AP Bio ch 25, 6, 7

Updated 245d ago

Note

Community Ecology, Biodiversity, and Disruptions

Updated 1041d ago

Note

Updated 1047d ago

Note

Urbanization (Prehistoric Era to 600 CE)

Updated 887d ago

Note

Concise Chemistry Summary

Note

Explore top flashcards

4.1F algunas costumbres regionales

Updated 979d ago

Flashcards (40)

GCSE AQA 'Animal Farm': Key Themes

Updated 936d ago

Flashcards (20)

SOC Exam 2 (Chapters 5-8)

Updated 462d ago

Flashcards (57)

English exam (copy)

Updated 881d ago

Flashcards (24)

Updated 818d ago

Flashcards (127)

Unit 5.1-5.2 Vocab

Updated 911d ago

Flashcards (61)

IELTS Listening

Updated 404d ago

Flashcards (40)

Updated 12d ago

Flashcards (89)