Focus areas for 6 Domains of Cyber Security during COVID-19

Focus areas for 6 Domains of Cyber Security during COVID-19

6 Domains of Cyber Security

  1. Network Security Domain protects the environment, outbound and inbound communications. (TechTarget: 5 Types of Network Management)
  2. Compliance and Operational Security Domain measures risk in terms of value. Compliance, Risk, Risk Mitigation, Controls, and governance of mitigating risk, third party integration, operations, and SLA, environmental controls, high availability and confidentiality best practices. Data is Secured, Accessisible. (Gartner: CFO Cyber Security Risk Checklist)
  3. Threats and Vulnerabilities Domain malware, social engineering, wireless attacks, and mitigation and deterrent techniques. Assessment tools and proper use of penetration testing an vulnerability scanning. (HealthCatalyst: Remote Work Safely)
  4. Application, Data and Host Security Domain exploits, SQL injections, web based apps, internal apps, critical data, sensitive information. Sound procedures for sound security hosting and securing systems, applications and data. (DigitalGuardian: 20 best practices for hybrid application data)
  5. Access Control and Identity Management Domain maintaining and security of IT Environment, Directory Services, LDAP, and SAML identification authorization and data access. Tokens, Multifactor Authentication. (SecurityIndustryAssociation: Role of Physical Access and Identity Management during COVID-19)
  6. Cryptography Domain online intended senders and receivers for eCommerce enablement. Provides confidentiality, encryption of unauthorized use, data integrity and not altered or modified in transit, provide authentication that the sender is who they say they are. Nonrepudiation can not deny sending of the message through cryptography. (Wired: Clever Cryptography could protect privacy in COVID-19)

Trending COVID-19 Security Focus

  1. Incident and Major Incident Reponse and Crisis Management Team Resolution and Maturity Best Practices
  2. Establish on-demand Communication for Advancing Employee Awareness or Education on managing the new COVID-19 Crisis and Knowledge Management Business Challenges
  3. Maintain remote access standards with regular capabilities and vulnerabilities testing and routine endpoint patching.
  4. Remote Worker Social Engineering Awareness Testing and education programs must be kept current.
  5. Maintain Partner and Security Supply Chain Process
  6. Retain Employee Information and Privacy while managing COVID Safety.

CyberFraud Prevention group

Resources & Community Best Practices:

CYBER SECURITY Standards and Groups:

CISA | ISO | NIST |Association of Artificial Intelligence (AI) and Robotic Process Automation (RPA) | CISO Cyber Security Information Group (CCSIG) | Cloud Computing, Cybersecurity, SaaS, Data Centre & Virtualization | Enterprise Global CyberFraud Prevention |

CyberSecurity Online Magazines:

Leave a Reply

Your email address will not be published. Required fields are marked *

Follow Me