Cybersecurity Core Functions

It ensures that critical operations can continue with minimal disruption after an attack.

It provides a detailed list of all employees' personal information.

It eliminates the need for regular software updates.

It guarantees that no data will be lost during an attack.

Analysis, mitigation, communication, and documentation.

Preparation, execution, evaluation, and reporting.

Identification, assessment, response, and recovery.

Planning, training, implementation, and review.

To investigate and understand the root cause of an incident for better mitigation and future prevention.

To collect evidence for legal proceedings only.

To provide immediate solutions to ongoing incidents.

To analyze financial data related to the incident.

To identify cybersecurity events and anomalies in a timely manner.

To prevent unauthorized access to systems and data.

To recover from cybersecurity incidents effectively.

To create awareness about cybersecurity threats.

Identify, Protect, Detect, Respond, Recover

Assess, Mitigate, Monitor, Report, Recover

Identify, Protect, Analyze, Respond, Recover

Detect, Protect, Respond, Train, Recover

Access control, awareness training, data security, maintenance, and protective technology.

User authentication and password policies.

Network segmentation and firewall configurations.

Incident response and recovery planning.

MFA simplifies the login process for users.

MFA adds an extra layer of security, making it harder for unauthorized users to gain access.

MFA eliminates the need for passwords altogether.

MFA is only useful for large organizations.

Recovery planning, improvements, and communication.

Risk assessment and mitigation planning.

Incident detection and response.

Data encryption and access control.

To evaluate threats, vulnerabilities, and impacts to prioritize security measures effectively.

To create a detailed report of all security incidents.

To implement security measures without assessing risks.

To train employees on security protocols.

To ensure clear, timely, and accurate information is shared with stakeholders during a cybersecurity incident.

To minimize the cost of cybersecurity tools and resources.

To avoid any communication with stakeholders during an incident.

To ensure that only the IT team is informed about the incident.