What is a Security Control Type?
The goal or the function of a particular procedure.
What is it trying to accomplish?
Preventative Controls
Controls which seek to stop security incidents from occurring in the first place.
-Encryption
-App Filtering
-Access Control Systems
Deterrent Controls
Controls which seek to discourage or deter, make people think twice about what they’re doing.
-Signage (“Restricted Area”)
-CCTV \ Cameras
-Guards
Detective Controls
Controls which seek to record and log actions and changes within a given environment
-CCTV / Cameras
-IPS / IDS
-SIEM
Corrective Controls
Controls which make it simple to correct errors and mistakes
-Backup / Restore
-IRP (Incident Response Plan)
-DRP (Disaster Recovery Plan)
Compensating Controls
Controls which compensate for unavoidable breaches in security posture (A windows 98 system is critical to the business and must be accessible on the network despite being insecure)
Building security “around” rather than “within”
-Segmentation
-Virtualization
Recovery Controls
Controls which assist with returning to normalcy after an incident
-Backup/Restore
-DRP (Disaster Recovery Plan)
-BCP (Business Continuity Plan)
Directive Controls
Controls which are mandatory procedures, often passed down from C-Suites, Security Teams, or federal regulation (HIPPA)
-AUP (Authorized Use Policy)
-Password Policy
-Data Classification Policy
-
Security Control Categories6
-
Security Control Types8
-
Principals of Security7
-
Authentication Factors2
-
Authorization and Access Control Models5
-
Authentication, Authorization, Accounting7
-
Principals of Zero Trust6
-
Deception and Disruption Technologies2
-
Business Processes and Security Operations8
-
Encryption Solutions9
-
Public Key Infrastructure (PKI)7
-
Examining Digital Certificates10
