Please enable JavaScript.
Coggle requires JavaScript to display documents.
Security plan (Internal users (User training, Employees must be veted,…
Security plan
Internal users
User training
Employees must be veted
Certified workers
End user training
Role based access employees
Threats
DDOS
Virus
Hackers
Phishing attacks
COMMS
Firewall
VLANS
Network monitoring
IDS / IPS
Physical
CCTV
Bars on windows
Security / Security guards
Locked server cabinets
Data
Personal data
Financial data
medical data
Sensitive data
Secrets
Unlawful activity
National security
Potential embarrassing private data
Sensitive information
Trade secrets
Customer databases
Procedures
Employee take on
Object access
server comms
Legal
GDPR
Data protection act 2017
Computer misuse act 1990
Backup
Cloud backup
Tape backup
Full backup
Confidentiality
Role based access
encryption
security groups
Software
Anti virus
Monitoring
Audit
Availability
Disaster recovery
no single point of failure
DR exercises
Maximum tolerable outage / likely recovery interval
Procedures
Audit
Employee take on
servers comms
Policies
security plan
Incident plan