Introduction to Cyber Security: Security Controls and Risk Management
Call Kai
Learn
Practice Test
Spaced Repetition
Match
Flashcards
Knowt Play1/14
Earn XP
Description and Tags
This set of flashcards covers key concepts from the lecture on Security Controls and Risk Management in Cyber Security, helping students understand important definitions and classifications related to the topic.
Name | Mastery | Learn | Test | Matching | Spaced | Call with Kai |
|---|
No analytics yet
Send a link to your students to track their progress
15 Terms
Security Controls
Measures implemented to protect information and assets from threats, often categorized as physical, technical, and administrative.
Physical Controls
Security measures implemented to prevent unauthorized access to sensitive materials, such as surveillance cameras and locked doors.
Technical Controls
Controls that use technology to manage access and use of sensitive data, including encryption and access control lists.
Administrative Controls
Human factors of security, involving policies and procedures that govern user access and responsibility within an organization.
Preventive Controls
Measures designed to discourage errors or irregularities by preventing them from occurring.
Detective Controls
Controls that help identify errors or irregularities after they have occurred, such as monitoring systems and audits.
Corrective Controls
Measures taken to correct a situation after a security violation has occurred.
Recovery Controls
Controls used in serious situations to recover from security violations and restore information.
Compensating Controls
Alternative arrangements made when original controls fail or cannot be used, addressing the same threats.
Risk Management
The process of identifying, assessing, and reducing risks to an acceptable level in information systems.
Vulnerability
A weakness in a system, network, or device that can be exploited by a threat.
Threat
Potential danger posed by a vulnerability.
Risk
The likelihood of a threat exploiting a vulnerability and the associated business impact.
Countermeasure
A safeguard put in place to mitigate potential risks.
Annualized Loss Expectancy (ALE)
The expected annual loss due to a threat, calculated using Single Loss Expectancy (SLE) and Annualized Rate of Occurrence (ARO).
