To counter these threats, organizations implement various "controls" categorized into three types: 1. Administrative Controls These are the "people" and "process" parts of security. Security policies and procedures. Employee training and awareness programs. Hiring practices and background checks. 2. Technical (Logical) Controls These use technology to protect data.
The foundation of any information security program is the . These three principles serve as the industry standard for evaluating security posture. The Basics of Information Security: Understandi...
: Maintaining the accuracy and completeness of data. Data must not be altered by unauthorized parties. To counter these threats
: Unauthorized physical access to servers, workstations, or printed documents. 🛠️ Essential Security Controls The Basics of Information Security: Understandi...