https://github.com/qeeqbox/security-controls

Countermeasures or safeguards for detecting, preventing, and mitigating cyber threats and attacks (Protect assets)
https://github.com/qeeqbox/security-controls

controls infosecsimplified qeeqbox security security-controls

Last synced: 3 months ago
JSON representation

Countermeasures or safeguards for detecting, preventing, and mitigating cyber threats and attacks (Protect assets)

• Host: GitHub
• URL: https://github.com/qeeqbox/security-controls
• Owner: qeeqbox
• License: agpl-3.0
• Created: 2023-03-28T21:25:49.000Z (about 2 years ago)
• Default Branch: main
• Last Pushed: 2024-01-29T00:54:11.000Z (over 1 year ago)
• Last Synced: 2025-01-16T05:55:50.803Z (4 months ago)
• Topics: controls, infosecsimplified, qeeqbox, security, security-controls
• Homepage:
• Size: 37.1 KB
• Stars: 1
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        
### Security Controls

Countermeasures or safeguards for detecting, preventing, and mitigating cyber threats and attacks (Protect assets)

* * *

### Security Controls Types

#### Physical

Tanglebe things that used to protect assets

#### Technical/Logical

Hardware or software mechanisms that used to protect assets

#### Administrative

Personnel or business practices that used to protect assets (policies, procedures, or guidelines)

* * *

### Security Controls Functions

#### Deterrent

Any measures that reduce the likelihood of a deliberate attack

#### Preventative

Any measures that stop an attack from occurring

#### Detective

Any measures that detect an attack

#### Corrective

Any measures that reverse the impact of an incident after it has happened

#### Recovery

Any measures that bring the system back to how it was (Normal condition) before the attack 

* * *

### Physical

*   Deterrent

    *   Warning signs

*   Preventative

    *   Fences

*   Detective

    *   CCTV

*   Corrective

    *   Fire suppression system

*   Recovery

    *   Disaster recovery site

    *   Repair physical damage

* * *

### Technical

*   Deterrent

    *   Banners

*   Preventative

    *   Firewall

*   Detective

    *   SIEM

    *   IDS

    *   Honeypots

*   Corrective

    *   Patches

    *   Quarantining a malware

*   Recovery

    *   Backup

* * *

### Administrative

*   Deterrent

    *   Policies and procedures

*   Preventative

    *   Separation of duties

    *   Data classification

    *   User training

*   Detective

    *   Audit logs

*   Corrective

    *   Incident response plan

    *   Business continuity plan

*   Recovery

    *   Disaster recovery plan

* * *

    

## id

b0976734-39b8-4c37-a212-78ac51be2995

## References

- https://en.wikipedia.org/wiki/Security_controls