Advanced Security: Difference between revisions
From GCA ACT
Jump to navigationJump to search
No edit summary |
No edit summary |
||
Line 1: | Line 1: | ||
{| class="wikitable" style="border: none; background-color: transparent; width: 100%;" | {| class="wikitable" style="border: none; background-color: transparent; width: 100%;" | ||
|- | |- | ||
| rowspan="3" style="border: none; background-color: | | rowspan="3" style="border: none; background-color: transparent; text-align: center; vertical-align: top; width: 20%;" | [[File:Elephants.png|frameless|225px|center|link=Advanced_Protection]] | ||
| style="border: none; background-color: #EBEBEB; vertical-align: top; text-align: center; width: 20%;" | | | style="border: none; background-color: #EBEBEB; vertical-align: top; text-align: center; width: 20%;" | | ||
'''Network Segmentation''' | '''Network Segmentation''' | ||
Line 52: | Line 52: | ||
<div style="text-align: left;">Establish and maintain secure configuration settings for all systems and devices.</div> | <div style="text-align: left;">Establish and maintain secure configuration settings for all systems and devices.</div> | ||
|- | |- | ||
| style="border: none; background-color: | | style="border: none; background-color: #EBEBEB; vertical-align: top; text-align: center; width: 20%;" | | ||
'''Change Management''' | '''Change Management''' | ||
<br> | <br> | ||
Line 58: | Line 58: | ||
<br> | <br> | ||
<div style="text-align: left;">Implement structured processes to manage changes in a controlled and efficient manner.</div> | <div style="text-align: left;">Implement structured processes to manage changes in a controlled and efficient manner.</div> | ||
| style="border: none; background-color: | | style="border: none; background-color: transparent; vertical-align: top; text-align: center; width: 20%;" | | ||
'''Identity & Access Management''' | '''Identity & Access Management''' | ||
<br> | <br> | ||
Line 64: | Line 64: | ||
<br> | <br> | ||
<div style="text-align: left;">Implement proper user access controls, management processes, and regularly review user privileges.</div> | <div style="text-align: left;">Implement proper user access controls, management processes, and regularly review user privileges.</div> | ||
| style="border: none; background-color: | | style="border: none; background-color: #EBEBEB; vertical-align: top; text-align: center; width: 20%;" | | ||
'''Patch Management''' | '''Patch Management''' | ||
<br> | <br> | ||
Line 70: | Line 70: | ||
<br> | <br> | ||
<div style="text-align: left;">Establish processes to apply patches and updates to systems and applications in a timely manner.</div> | <div style="text-align: left;">Establish processes to apply patches and updates to systems and applications in a timely manner.</div> | ||
| style="border: none; background-color: | | style="border: none; background-color: transparent; vertical-align: top; text-align: center; width: 20%;" | | ||
'''Security Awareness Training & Testing''' | '''Security Awareness Training & Testing''' | ||
<br> | <br> |
Revision as of 00:28, 7 August 2023
Network Segmentation
Divide networks into smaller, isolated segments to limit the impact of a potential breach.
|
Intrusion Detection & Prevention Systems
Deploy advanced systems to detect and prevent network intrusions.
|
Endpoint Protection
Implement robust antivirus and endpoint security solutions to safeguard individual devices.
|
Security Information & Event Management
Utilize SIEM tools to monitor and analyze security events across the network.
| |
Vulnerability Management
Conduct regular assessments to identify and address system vulnerabilities.
|
Penetration Testing
Simulate real-world attacks to evaluate the security of a system or network.
|
Incident Response Planning
Develop and test an incident response plan to efficiently handle cybersecurity incidents.
|
Secure Configuration Management
Establish and maintain secure configuration settings for all systems and devices.
| |
Change Management
Implement structured processes to manage changes in a controlled and efficient manner.
|
Identity & Access Management
Implement proper user access controls, management processes, and regularly review user privileges.
|
Patch Management
Establish processes to apply patches and updates to systems and applications in a timely manner.
|
Security Awareness Training & Testing
Provide regular training and education on cybersecurity best practices to all personnel; and periodically test that knowledge.
|