Ensuring data is accurate and has not been altered

The ability to access data at any time

Protecting data from all external threats

Encrypting data to prevent unauthorized access

Cybersecurity Framework

Information System Components

Information Security Policy

Security Development Lifecycle

Data Encryption

Information Security

Network Security

System Authentication

Rules, roles, responsibilities, and enforcement

Data encryption, passwords, and cloud storage

Backups, recovery plans, and monitoring software

User access, system logs, and firewalls

A flaw in a system's software

A category of objects, persons, or entities that presents a danger to an asset

The probability of a security breach occurring

A set of security policies designed to prevent attacks

The probability that something unwanted will happen

The presence of a vulnerability in a system

The lack of security measures in an organization

The process of securing computer networks

Control, Integrity, Authentication

Confidentiality, Integrity, Availability

Communication, Identification, Access

Compliance, Investigation, Authorization