Introduction to Cyber Security

These flashcards cover key terms and definitions related to Cyber Security, focusing on security controls, risk management, and related concepts.

Security Controls

Measures implemented to protect sensitive information and systems from unauthorized access or damage.

Physical Controls

Security measures that deter or prevent unauthorized access to sensitive material through physical structures.

Technical Controls

Security measures that utilize technology to control access and usage of sensitive data.

Administrative Controls

Human-factor measures involving policies, procedures, and personnel management to secure organizational resources.

Preventive Controls

Actions taken to discourage unauthorized behavior or errors before they occur.

Detective Controls

Measures designed to identify and alert to errors or irregularities after they have occurred.

Corrective Controls

Actions implemented to fix issues after a security incident has occurred.

Recovery Controls

Measures executed to restore systems and data after a significant security breach.

Compensating Controls

Alternative measures implemented when primary controls are ineffective or unavailable.

Risk Management

The process of identifying, assessing, and mitigating risks to an acceptable level.

Vulnerability

A weakness in a system, network, or device that can be exploited by a threat.

Threat

A potential danger that could exploit a vulnerability.

Threat Agent

An entity that identifies vulnerabilities and exploits them.

Exposure

The potential for loss or damage from a threat.

Countermeasure

Actions taken to mitigate potential risks.

Qualitative Analysis

Assessment involving subjective judgment regarding potential risks.

Quantitative Analysis

Assessment that quantifies risk using numerical values and statistical methods.

Single Loss Expectancy (SLE)

The expected monetary loss every time a risk event occurs.

Annualized Rate of Occurrence (ARO)

The estimated frequency of a risk event occurring within a year.

Annualized Loss Expectancy (ALE)

The expected annual loss from a risk event.