Cyber Security Policy Notes
Cyber Security Policy Notes
Cyber Security Policy Notes
Cyber Security is the ability to control access to systems, networks and the
information and data in them
Role of a professional is to plan for potential attacks and prevent them
Applies to both physical systems and networks
The cyberspace is considered to be a fourth domain of nations
Specific goals:
-Prevent, detect, respond prevent all possible attacks (impossible), detect
ongoing ones and respond to those in order to keep the system and network safe
(includes repairing any damage left)
-People, process, technology routines the operators must follow in order to
keep technology working in optimal performance and as safely as possible
(collectively act, prevent social engineering)
-confidentiality, integrity, and availability ensure the authorization,
authenticity and precision of information
A policy should be flexible and open to change; revisited every time a situation
changes. However, it should be robust enough to withstand the ever-increasing
changes in technology and the growing desire of executives to expand their
productivity