Cybersecurity domains-map-3.0
merlincba
1,384 views
1 slides
Apr 07, 2021
Slide 1 of 1
1
About This Presentation
Mapa de Dominios de la CiberSeguridad
Slide Content
Cybersecurity Domains
Security Architecture
Network Design
DDoS Prevention
Security Engineering
Data Protection
Data Leakage Prevention
Access Control
Identity Management
Privileged Access
Management
Identity & Access
Management
Federated Identity
MFA & SSO
Cloud Security
Secure System Build
Baseline Configuration Patch Management
Cryptography
Key and Secret Management
Vaulting
HSM
Encryption Standards
Certificate Management
(Internal & External)
Endpoint Hygiene
Container Security
Security Operation
Security Operation Centers Incident Response
Breach Notification
Containment
Eradication
Investigation
Forensics
Blue Team
Red Team
Detection
Breach Notification
SIEMSOAR
Vulnerability
Management
Active Defense
Threat Hunting
Governance
Laws and Regulations
Regional
CCPA
NYS-DFS 23 NYCRR 500
Central Government
GDPR
GLBA
Industry Specific
PCI
HIPAA
Company's Written Policies
Internal Policy
Procedure
Standard Guideline
Compliance & Enforcement
Executive Management Involvement
Reports and Scorecards
KPI
KRI
Risk Informed
Risk Assessment
3rd Party Risk
4th Party Risk
Penetration test
Infrastructure
(Network and Systems)
Application Pen Tests
Social Engeering
DAST
Vulnerability
scan
Assets Inventory
Risk Monitoring Services
(Risk score)
User Education
Training (new skills)
Awareness (reinforcement)
Cyber security table-top
excersice
Threat Intelligence
Internal
IOCs Intel. Sharing
External
Contextual
Career Development
Training
Certifications
Conferences
Peer Groups Self Study
Coaches and
Role Models
Frameworks
and Standards
NIST Cybersecurity
Framework
ISO 27001
27017
27018
OWASP Top 10
(WebApp & API)
CIS Top 20 Controls
CIS Benchmarks
MITRE
ATT&CK
Framework
Physical SecurityIoT Security
Enterprise Risk Management Lines of Defense
3. Audit
SOC1/SOC2 ISMS
1. Process Owners
2. Risk Mgmt Group
Risk Treatment
Actions
Risk Appetite
Cyber Insurance
BCP/DR Plan
Crisis Management
Risk
Acceptance
Statement
Risk Register
Application Security
S-SDLC
"Shift Left"
CI/CD integration
Source Code Scan
Open Source ScanSAST
Data-Flow Diagram
API Security
Security UX
Security QA
The Map of Cybersecurity Domains
Henry Jiang | March 2021 | REV 3.0
Security Architecture
Network Design
DDoS Prevention
Security Engineering
Data Protection
Data Leakage Prevention
Access Control
Identity Management
Privileged Access
Management
Identity & Access
Management
Federated Identity
MFA & SSO
Cloud Security
Secure System Build
Baseline Configuration Patch Management
Cryptography
Key and Secret Management
Vaulting
HSM
Encryption Standards
Certificate Management
(Internal & External)
Endpoint Hygiene
Container Security
Security Operation
Security Operation Centers Incident Response
Breach Notification
Containment
Eradication
Investigation
Forensics
Blue Team
Red Team
Detection
Breach Notification
SIEMSOAR
Vulnerability
Management
Active Defense
Threat Hunting
Governance
Laws and Regulations
Regional
CCPA
NYS-DFS 23 NYCRR 500
Central Government
GDPR
GLBA
Industry Specific
PCI
HIPAA
Company's Written Policies
Internal Policy
Procedure
Standard Guideline
Compliance & Enforcement
Executive Management Involvement
Reports and Scorecards
KPI
KRI
Risk Informed
Risk Assessment
3rd Party Risk
4th Party Risk
Penetration test
Infrastructure
(Network and Systems)
Application Pen Tests
Social Engeering
DAST
Vulnerability
scan
Assets Inventory
Risk Monitoring Services
(Risk score)
User Education
Training (new skills)
Awareness (reinforcement)
Cyber security table-top
excersice
Threat Intelligence
Internal
IOCs Intel. Sharing
External
Contextual
Career Development
Training
Certifications
Conferences
Peer Groups Self Study
Coaches and
Role Models
Frameworks
and Standards
NIST Cybersecurity
Framework
ISO 27001
27017
27018
OWASP Top 10
(WebApp & API)
CIS Top 20 Controls
CIS Benchmarks
MITRE
ATT&CK
Framework
Physical SecurityIoT Security
Enterprise Risk Management Lines of Defense
3. Audit
SOC1/SOC2 ISMS
1. Process Owners
2. Risk Mgmt Group
Risk Treatment
Actions
Risk Appetite
Cyber Insurance
BCP/DR Plan
Crisis Management
Risk
Acceptance
Statement
Risk Register
Application Security
S-SDLC
"Shift Left"
CI/CD integration
Source Code Scan
Open Source ScanSAST
Data-Flow Diagram
API Security
Security UX
Security QA
The Map of Cybersecurity Domains
Henry Jiang | March 2021 | REV 3.0
Categories
TechnologyDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 1,384
- Slides 1
- Age 1700 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
46 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
46 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
37 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
34 views
21
Know for Certain
DaveSinNM
21 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
26 views