Control, Intelligence, Awareness

Confidentiality, Intelligence, Access

Confidentiality, Integrity, Availability

Control, Integrity, Availability

Two-factor authentication

Encryption

User access policies

Biometric verification

To provide reliable access to data

To protect data from unauthorized access

To ensure the network is available at all times

To protect data and resources from unauthorized changes

Internal segmentation

Strong firewalls

Employee training

Database monitoring

Data and resources are not altered without authorization

Data is hidden from unauthorized users

Data is encrypted and secure

Authorized users have reliable access to data and resources

Insider mistakes

Malware

Viruses

Trojan horses

To catalog all antivirus software

To offer a database of strong firewalls

To list all external and internal threats

To provide a centralized resource for known vulnerabilities