Advanced Security: Difference between revisions

From GCA ACT
Jump to navigationJump to search
No edit summary
No edit summary
 
(30 intermediate revisions by the same user not shown)
Line 1: Line 1:
{| class="wikitable" style="border: none; background-color: transparent; width: 100%;"
{| class="wikitable" style="border: none; background-color: transparent; width: 100%;"
|-
|-
| colspan="3" style="border: none; background-color: transparent; text-align: center; vertical-align: middle;" | <div style="display: flex; justify-content: center;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">[[File:Elephants.png|frameless|225px|center|link=Advanced_Protection]]</div></div>
| rowspan="3" style="border: none; background-color: transparent; text-align: center; vertical-align: middle; width: 20%;" | [[File:Elephants.png|frameless|225px|center|link=Advanced_Protection]]
| style="border: none; background-color: #EBEBEB; vertical-align: top; text-align: center; width: 20%; font-weight: bold;"|
Network Segmentation
<br><br>
[[File:ACT_Network_Segmentation_Icon.svg|frameless|60px|center|link=Network Segmentation]]
<br>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Divide networks into smaller, isolated segments to limit the impact of a potential breach.</div>
| style="border: none; background-color: transparent; vertical-align: top; text-align: center; width: 20%; font-weight: bold;"|
Intrusion Detection & Prevention Systems
<br>
[[File:ACT_Intrusion_Protection_Icon.svg|frameless|60px|center|link=Intrusion Detection & Prevention Systems]]
<br>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Deploy advanced systems to detect and prevent network intrusions.</div>
| style="border: none; background-color: #EBEBEB; vertical-align: top; text-align: center; width: 20%; font-weight: bold;" |
Endpoint Protection
<br>
<br>
[[File:ACT_Endpoint_Protection_Icon.svg|frameless|60px|center|link=Endpoint Protection]]
<br>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Implement robust antivirus and endpoint security solutions to safeguard individual devices.</div>
| style="border: none; background-color: transparent; vertical-align: top; text-align: center; width: 20%; font-weight: bold;" |
Security Information & Event Management
<br>
[[File:ACT_Security_Information_Event_Management_Icon.svg|frameless|60px|center|link=Security Information & Event Management]]
<br>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Utilize SIEM tools to monitor and analyze security events across the network.</div>
|-
|-
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: center;"><div style="position:relative; text-align:left; font-weight:bold; z-index: 1;">Network Segmentation</div></div><br><div style="position:relative; text-align: left; z-index:1;">Divide networks into smaller, isolated segments to limit the impact of a potential breach.</div><div style="padding: 5px;">[[File:network-segmentation.png|frameless|60px|left]]</div>
| style="border: none; background-color: transparent; vertical-align: top; text-align: center; width: 20%; font-weight: bold;" |
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: flex-start;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">Intrusion Detection & Prevention Systems</div></div><br><div style="position:relative; text-align: right; z-index:1;">Deploy advanced systems to detect and prevent network intrusions.</div><div style="padding: 5px;">[[File:intrusion-protection.png|frameless|60px|left]]</div>
Threat & Vulnerability Management
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: flex-start;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">Endpoint Protection</div></div><br><div style="position:relative; text-align: right; z-index:1;">Implement robust antivirus and endpoint security solutions to safeguard individual devices.</div><div style="padding: 5px;">[[File:endpoint-protection.png|frameless|60px|left]]</div>
<br>
<br>
[[File:ACT_Vulnerability_Management_Icon.svg|frameless|60px|center|link=Threat & Vulnerability Management]]
<br>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Conduct regular assessments to identify and address system vulnerabilities.</div>
| style="border: none; background-color: #EBEBEB; vertical-align: top; text-align: center; width: 20%; font-weight: bold;" |
Attack & Penetration Testing
<br>
<br>
[[File:ACT_Penetration_Testing_Icon.svg|frameless|60px|center|link=Attack & Penetration Testing]]
<br>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Simulate real-world attacks to evaluate the security of a system or network.</div>
| style="border: none; background-color: transparent; vertical-align: top; text-align: center; width: 20%; font-weight: bold;" |
Incident Response Planning & Testing
<br>
[[File:ACT_Incident_Response_Icon.svg|frameless|60px|center|link=Incident Response Planning & Testing]]
<br>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Develop and test an incident response plan to efficiently handle cybersecurity incidents.</div>
| style="border: none; background-color: #EBEBEB; vertical-align: top; text-align: center; width: 20%; font-weight: bold;" |
Secure Configuration Management
<br>
[[File:ACT_Configuration_Management_Icon.svg|frameless|60px|center|link=Secure Configuration Management]]
<br>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Establish and maintain secure configuration settings for all systems and devices.</div>
|-
|-
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: flex-start;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">Security Information & Event Management</div></div><br><div style="position:relative; text-align: right; z-index:1;">Utilize SIEM tools to monitor and analyze security events across the network.</div><div style="padding: 5px;">[[File:security-information-event-management.png|frameless|60px|left]]</div>
| style="border: none; background-color: #EBEBEB; vertical-align: top; text-align: center; width: 20%; font-weight: bold;" |
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: flex-start;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">Vulnerability Management</div></div><br><div style="position:relative; text-align: right; z-index:1;">Conduct regular assessments to identify and address system vulnerabilities.</div><div style="padding: 5px;">[[File:vulnerability-management.png|frameless|60px|left]]</div>
Change Management
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: flex-start;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">Penetration Testing</div></div><div style="padding: 5px;">[[File:penetration-testing.png|frameless|60px|left]]</div>
<br>
|-
<br>
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: flex-start;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">Incident Response Planning</div></div><br><div style="position:relative; text-align: right; z-index:1;">Develop and test an incident response plan to efficiently handle cybersecurity incidents.</div><div style="padding: 5px;">[[File:incident-response.png|frameless|60px|left]]</div>
[[File:ACT_Change_Management_Icon.svg|frameless|60px|center|link=Change Management]]
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: flex-start;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">Secure Configuration Management</div></div><br><div style="position:relative; text-align: right; z-index:1;">Establish and maintain secure configuration settings for all systems and devices.</div><div style="padding: 5px;">[[File:configuration-management.png|frameless|60px|left]]</div>
<br>
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: flex-start;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">Change Management</div></div><div style="padding: 5px;">[[File:change-management.png|frameless|60px|left]]</div>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Implement structured processes to manage changes in a controlled and efficient manner.</div>
|-
| style="border: none; background-color: transparent; vertical-align: top; text-align: center; width: 20%; font-weight: bold;" |
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: flex-start;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">Identity & Access Management</div></div><br><div style="position:relative; text-align: right; z-index:1;">Implement proper user access controls, management processes, and regularly review user privileges.</div><div style="padding: 5px;">[[File:identity-access-management.png|frameless|60px|left]]</div>
Identity & Access Management
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: flex-start;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">Patch Management</div></div><br><div style="position:relative; text-align: right; z-index:1;">Establish processes to apply patches and updates to systems and applications in a timely manner.</div><div style="padding: 5px;">[[File:patch-management.png|frameless|60px|left]]</div>
<br>
| style="border: none; background-color: transparent; text-align: left; vertical-align: middle;" | <div style="display: flex; align-items: flex-start;"><div style="position:relative; text-align:center; font-weight:bold; z-index: 1;">Security Awareness Training & Testing</div></div><br><div style="position:relative; text-align: right; z-index:1;">Provide regular training and education on cybersecurity best practices to all personnel; and periodically test that knowledge.</div><div style="padding: 5px;">[[File:security-awareness.png|frameless|60px|left]]</div>
[[File:ACT_Identity_Access_Management_Icon.svg|frameless|60px|center|link=Identity & Access Management]]
<br>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Implement proper user access controls, management processes, and regularly review user privileges.</div>
| style="border: none; background-color: #EBEBEB; vertical-align: top; text-align: center; width: 20%; font-weight: bold;" |
Patch Management
<br>
<br>
[[File:ACT_Patch_Management_Icon.svg|frameless|60px|center|link=Patch Management]]
<br>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Establish processes to apply patches and updates to systems and applications in a timely manner.</div>
| style="border: none; background-color: transparent; vertical-align: top; text-align: center; width: 20%; font-weight: bold;" |
Security Awareness Training & Testing
<br>
[[File:ACT_Security_Awareness_Icon.svg|frameless|60px|center|link=Security Awareness Training & Testing]]
<br>
<div style="text-align: left; font-weight: normal; font-size: 75%;">Provide regular training and education on cybersecurity best practices to all personnel; and periodically test that knowledge.</div>
|}
|}

Latest revision as of 19:56, 26 September 2023

Elephants.png

Network Segmentation

ACT Network Segmentation Icon.svg


Divide networks into smaller, isolated segments to limit the impact of a potential breach.

Intrusion Detection & Prevention Systems

ACT Intrusion Protection Icon.svg


Deploy advanced systems to detect and prevent network intrusions.

Endpoint Protection

ACT Endpoint Protection Icon.svg


Implement robust antivirus and endpoint security solutions to safeguard individual devices.

Security Information & Event Management

ACT Security Information Event Management Icon.svg


Utilize SIEM tools to monitor and analyze security events across the network.

Threat & Vulnerability Management

ACT Vulnerability Management Icon.svg


Conduct regular assessments to identify and address system vulnerabilities.

Attack & Penetration Testing

ACT Penetration Testing Icon.svg


Simulate real-world attacks to evaluate the security of a system or network.

Incident Response Planning & Testing

ACT Incident Response Icon.svg


Develop and test an incident response plan to efficiently handle cybersecurity incidents.

Secure Configuration Management

ACT Configuration Management Icon.svg


Establish and maintain secure configuration settings for all systems and devices.

Change Management

ACT Change Management Icon.svg


Implement structured processes to manage changes in a controlled and efficient manner.

Identity & Access Management

ACT Identity Access Management Icon.svg


Implement proper user access controls, management processes, and regularly review user privileges.

Patch Management

ACT Patch Management Icon.svg


Establish processes to apply patches and updates to systems and applications in a timely manner.

Security Awareness Training & Testing

ACT Security Awareness Icon.svg


Provide regular training and education on cybersecurity best practices to all personnel; and periodically test that knowledge.
Retrieved from ‘https://act.globalcyberalliance.org/index.php?title=Advanced_Security&oldid=1836