Please enable JavaScript.
Coggle requires JavaScript to display documents.
Cybersecurity: Controls, Frameworks & Compliance. - Coggle Diagram
Cybersecurity: Controls, Frameworks & Compliance.
Specific Regulations & Standards
FERC-NERC: Power grid protection in North America.
SOC Reports: Evaluate financial compliance and data security.
FedRAMP: Cloud security for U.S. federal agencies.
NIST RMF: U.S. risk management framework.
Security Controls
Definition: Safeguards to reduce security risks.
Protect data.
Mitigate threats and vulnerabilities.
Security Frameworks
Definition: Guidelines to build plans for mitigating risks.
Setting guidelines.
Implementing processes.
Identifying security goals.
Monitoring results.
Examples
ISO 27001.
NIST Cybersecurity Framework (CSF).
CIS Controls.
Compliance
Definition: Adhering to internal standards and external regulations.
Examples
HIPAA (Health data protection).
PCI DSS (Credit card security).
GDPR (Protects EU residents' data).
. Key Principles: CIA Triad
Integrity: Ensure data accuracy.
Availability: Ensure data is accessible when needed.
Confidentiality: Keep data private.