Security+_Domain_5

"Preventive controls act before an event, preventing it from advancing".

Deterrent - "acts to discourage the attacker by reducing the likelihood of success from the perspective of the attacker”.

An HVAC system can detect deviations in temperature and adjust accordingly.

GDPR - a regulation in EU laws that requires businesses to protect the personal data and privacy of EU citizens.
ISO - An independent, non-governmental organization that develops standards to ensure the quality, safety and efficiency of products, services and systems.

NIST - A non-regulatory US government agency created to develop cybersecurity standards, guidelines, best practices, and other resources to meet the needs of U.S. industry, federal agencies and the broader public.

PCI DSS - A set of security standards for organizations that handle credit cards from major card schemes.

CIS Benchmarks - a set of globally recognized and consensus-driven best practices to help security practitioners implement and manage their cybersecurity defenses.

In the SOC 2 Type report, the auditor confirms that the controls are functioning properly.

ISO is for all standards, whereas NIST is only related to security.GDPR - a regulation in EU laws that requires businesses to protect the personal data and privacy of EU citizens.
ISO - An independent, non-governmental organization that develops standards to ensure the quality, safety and efficiency of products, services and systems.

NIST - A non-regulatory US government agency created to develop cybersecurity standards, guidelines, best practices, and other resources to meet the needs of U.S. industry, federal agencies and the broader public.

PCI DSS - A set of security standards for organizations that handle credit cards from major card schemes.

CIS Benchmarks - a set of globally recognized and consensus-driven best practices to help security practitioners implement and manage their cybersecurity defenses.

GDPR - a regulation in EU laws that requires businesses to protect the personal data and privacy of EU citizens.
ISO - An independent, non-governmental organization that develops standards to ensure the quality, safety and efficiency of products, services and systems.

NIST - A non-regulatory US government agency created to develop cybersecurity standards, guidelines, best practices, and other resources to meet the needs of U.S. industry, federal agencies and the broader public.

PCI DSS - A set of security standards for organizations that handle credit cards from major card schemes.

CIS Benchmarks - a set of globally recognized and consensus-driven best practices to help security practitioners implement and manage their cybersecurity defenses.