Enforces CIA - Apples to the configurations of networking systems.

Ex> Firewall rules, IPS/IDS, Encryption.

Applies to oversight in terms of risk management mechanisms.

Example > risk assessments, security planning exercises.

Applies with day to day function, making sure the mission is carrying out.

Example > Log monitoring, data backups, vulnerability management.

Applies to physical security for facilities/assets.

Example > Building locks, perimeter lighting, fences, burglar alarms, fire suppression systems.

The goal is to prevent an exploit from happening, hence the name.

Example > Firewall and Encryption

The goal is to sway the threat actor from carrying out an attack.

Example > Vicious guard dogs, bright flood lights, barbed wire fences, those laser-filled rooms you see in spy movies….

The goal is to detect when an event/incident is/has happened.

Example > Intrusion Detection System spots malware activity on a network and alerts the admin.