av Gerson Varela 1 år siden
100
Mer som dette
SOAR
Synthetic
Passive
Configuration and system managment
Antimalware
IDS / IPS
Vulnerability scan
Vulnerability Managment
Patch Managmente
System to manage
Automation
Baseline ( images)
Data store
Privacy policie
NIST or ISO27000
UPS
Load Balancer
Clusters
RAID
Buldings / Facilities
Warm site
Hot Site
Cold site
People
Directive
Recover
Corrective
Compensating
Detective
Deterrent
Preventive
Priorization and response
Ignoring
Aceptance
Avoidance
Transfer
Mitigation
Reduction Analysis
Detemining and diagramming potential attack
Identify threats
Impact
Likehood
Anualized loss of ocurrance
Annualized rate of ocurrance
Single loss expectation
Exposure Factor
Asset Value
Hard code credential
Erros Handling
Comments
Elasticiiy
Scalability
Obfuscation and camuflage
Parameterized
Inference
Agregation
Concurrency
Black
Gray
White
Infraestructure
Website
SPF
DKIM
PGP
MSSP = XDR Central + Premise and cloud + SOC
XDR = EDR + MRR + EPP + NTA + NIDS + NIPS
EPP = ERR with IPS / IDS
MDR = SIEM + NTA + EDR + TDS
EDR = AV + IDS+ FW
Virtual
Packet
Circuit
Statefull
Next Gen
WAF
Static
TLS
SSH
Kerberos, Radius, TACACS
Screened subnet
Bastion host
Screened host
Active vs pasive
Active vs active
NAC
WIDS
Shredding
Destroy
Purging
Erasing
Host
Network
Publish fired
Reuse place
Chat
Card
Network access
Mobile