Enhancing office productivity and efficiency.

Complying with international privacy laws.

Ensuring the protection of national security

To increase the budget for the technology department.

Six Sigma

COBIT (Control Objectives for Information and Related Technologies)

The Risk Management Framework (RMF)

ITIL (Information Technology Infrastructure Library)

Easily replaceable with commercial alternatives.

High-stakes, controlling weapons and logistics.

only relevant to software developmentPrimarily used for public relations.

Monitored by international watchdogs.

A type of hardware malfunction in defense systems.

A common computer virus that is easily detected.

A physical security breach at a military facility.

A sophisticated, long-term cyberattack, often by a nation-state.

A risk-based approach applied throughout a system's life cycle.

A compliance-based approach focused only on federal laws.

An outsourced approach relying on third-party security firms.

A reactive approach that responds to breaches after they occur.

Is exploited before the developers are aware of it.

Can be blocked by any standard antivirus software.

Is known to developers but has not been patched yet.

Only affects systems that have not been updated in a year.

Surveillance drones

Satellite communications

Battlefield networks

Civilian social media platforms