登录查看更多内容

CISSP - Access Controls

Ashok Kakani

? CISO ? Cybersecurity Executive ? Enterprise Security Architect ? Cloud Security ? GRC ? Security Product Implementation ? Trusted Advisor ? AI/ML ? Automation

发布日期: 2016年2月18日

There are three broad categories of access control:

Administrative
Technical
Physical.

Each category has different access control mechanisms that can be carried out manually or automatically. All of these access control mechanisms should work in concert with each other to protect an infrastructure and its data.

Preventive Intended to avoid an incident from occurring
Corrective Fixes components or systems after an incident has occurred
Recovery Intended to bring the environment back to regular operations
Detective Helps identify an incident’s activities and potentially an intruder
Compensating Controls that provide an alternative measure of control

要查看或添加评论，请登录

Ashok Kakani的更多文章

Internet Security Glossary

2016年5月17日

Internet Security Glossary

Nice Link for RFC 2828 - Internet Security Glossary https://www.faqs.

2 条评论
Application Threat Modeling

2016年5月15日

Application Threat Modeling

1 条评论
Top 10 DNS attacks likely to infiltrate your network

2016年5月15日

Top 10 DNS attacks likely to infiltrate your network

3 条评论
SSL Basics

2016年5月12日

SSL Basics

SSL Steps Client starts a handshake request to the server by sending all the supported encryption methods and random…

6 条评论
Threats - Understanding Cyber attacks

2016年5月11日

Threats - Understanding Cyber attacks

This link provides complete overview on threats and all breaches and great reports. Link : https://www.
CISSP Videos - Reference

2016年5月11日

CISSP Videos - Reference

Nice Videos for CISSP Preparation https://www.youtube.

1 条评论
Security Tech tools Videos from CompTIA

2016年5月10日

Security Tech tools Videos from CompTIA

Link : https://www.comptia.
Cheat Sheets - Protocols, Ports etc.,

2016年5月4日

Cheat Sheets - Protocols, Ports etc.,

ref : https://packetlife.net/library/cheat-sheets/
Computer Security - Incident Handling Guide

2016年4月26日

Computer Security - Incident Handling Guide

Establishing an incident response capability should include the following actions: Creating an incident response policy…
TCP/IP and tcpdump - POCKET REFERENCE GUIDE

2016年4月24日

TCP/IP and tcpdump - POCKET REFERENCE GUIDE

I found this very useful from SANS regarding the tcpip and tcpdump. https://www.

1 条评论

See all articles

CISSP - Access Controls

Ashok Kakani

? CISO ? Cybersecurity Executive ? Enterprise Security Architect ? Cloud Security ? GRC ? Security Product Implementation ? Trusted Advisor ? AI/ML ? Automation

Ashok Kakani的更多文章

社区洞察

其他会员也浏览了

PCI DSS Requirement 2: Summary of Changes from Version 3.2.1 to 4.0 Explained

Security Groups Vs Distribution Groups

Is There a Disconnect Between Your PKI Security and Operations Teams?

Understanding Access Control: Key Principles and Best Practices

Keeper Security is a password manager that offers a variety of security features, including:

XpertDox Security Compliance Update!

Layered Security 101: Is the perimeter still a factor?

Access Control

Security Advisory YSA-2024-03 Infineon ECDSA Private Key Recovery

Ashok Kakani的更多文章

Internet Security Glossary

Application Threat Modeling

Top 10 DNS attacks likely to infiltrate your network

SSL Basics

Threats - Understanding Cyber attacks

CISSP Videos - Reference

Security Tech tools Videos from CompTIA

Cheat Sheets - Protocols, Ports etc.,

Computer Security - Incident Handling Guide

TCP/IP and tcpdump - POCKET REFERENCE GUIDE

社区洞察

其他会员也浏览了

PCI DSS Requirement 2: Summary of Changes from Version 3.2.1 to 4.0 Explained

Security Groups Vs Distribution Groups

Is There a Disconnect Between Your PKI Security and Operations Teams?

Understanding Access Control: Key Principles and Best Practices

Keeper Security is a password manager that offers a variety of security features, including:

XpertDox Security Compliance Update!

Layered Security 101: Is the perimeter still a factor?

Access Control

Security Advisory YSA-2024-03 Infineon ECDSA Private Key Recovery