Difference between revisions of "Cyber Security Glossary"

From BCMpedia. A Wiki Glossary for Business Continuity Management (BCM) and Disaster Recovery (DR).
Jump to navigation Jump to search
m (Reverted edits by Kelven (talk) to last revision by Moh heng)
 
(29 intermediate revisions by 2 users not shown)
Line 1: Line 1:
[[Image:BCM Institute.jpg‎|left|thumb|100px| '''[http://www.bcm-institute.org/courses/ Click: Visit BCM Institute's Courses]''']]
+
{{Header:Glossary}} {{BCMPedia Banner}} {{Languages|Cyber Security Glossary}} {{Header:About BCMpedia}}
 +
 
 +
[[File:BCMPedia CyberSecurity.png|thumb|left|200px]]
  
{{Header:Glossary}}
 
{{BCMPedia Banner}}
 
{{Languages|Cyber Security Glossary}}
 
{{Header:Cyber Security}}
 
{{Header:About BCMpedia}}
 
  
 
== Cyber Security (Incident Response) Glossary ==
 
== Cyber Security (Incident Response) Glossary ==
{| Style="width:100%" border="0" cellpadding="2"
 
|-valign="top"
 
|'''A'''
 
* [[Access Control]]
 
* [[Asset]]
 
* [[Audit]]
 
* [[Availability]] of Data
 
* [[Awareness]]
 
  
'''B'''  
+
{| border="0" cellpadding="2" style="width:100%"
* [[Backup]]
+
|- valign="top"
 +
| '''A'''  
 +
*[[Access_Control|Access Control]]
 +
*[[Asset|Asset]]
 +
*[[Audit|Audit]]
 +
*[[Availability|Availability]] of Data
 +
*[[Awareness|Awareness]]  
  
'''C'''  
+
'''B'''
* [[Chief Information Security Officer]] (CISO)
 
* [[Chief Security Officer]] (CSO)
 
* [[Cloud-based Vendor]]
 
* [[Compliance]]
 
* [[Confidentiality]] of Data
 
* [[Configuration]]
 
* [[Containment]]
 
* [[Content Management System]]
 
* [[Continuous Improvement]]
 
* [[Corrective Action]]
 
* [[Credibility]]
 
* [[Cyber Attacks]]
 
* [[Cyber Resiliency]]
 
* [[Cyber Risk]]
 
* [[Cyber Security]]
 
* [[Cyber Security Framework]]
 
* [[Cyber Security Incident Response]] (CIR)
 
* [[Cyber Security Insurance]]
 
* [[Cyber Security Threats]]
 
* [[Cyber Security Team]]
 
  
'''D'''
+
*[[Backup|Backup]]  
* [[Data Breach]]
 
* [[Data Management]]
 
* [[Data Recovery]]
 
* [[Denial of Service]]
 
* [[Domain Name System]] (DNS)
 
* [[Drives]]
 
  
|'''E'''  
+
'''C'''
* [[Email]]
 
* [[Encryption]]
 
* [[Escalation]]
 
* [[Extortion]]
 
  
'''F'''
+
*[[Chief_Information_Officer|Chief Information Officer]] (CIO)
* [[Firewall]]
+
*[[Chief_Information_Security_Officer|Chief Information Security Officer]] (CISO)
* [[Forensics]]
+
*[[Chief_Security_Officer|Chief Security Officer]] (CSO)
 +
*[[Chief_Technology_Officer|Chief Technology Officer]] (CTO)
 +
*[[Cloud-based_Vendor|Cloud-based Vendor]]
 +
*[[Compliance|Compliance]]
 +
*[[Confidentiality|Confidentiality]] of Data
 +
*[[Configuration|Configuration]]
 +
*[[Containment|Containment]]
 +
*[[Content_Management_System|Content Management System]]
 +
*[[Continuous_Improvement|Continuous Improvement]]
 +
*[[Corrective_Action|Corrective Action]]
 +
*[[Credibility|Credibility]]
 +
*[[Cyber_Criminal|Cyber Criminal]]
 +
*[[Cyber_Resiliency|Cyber Resiliency]]
 +
*[[Cyber_Risk|Cyber Risk]]
 +
*[[Cyber_Security|Cyber Security]]
 +
*[[Cyber_Security_Attacks|Cyber Security Attacks]]
 +
*[[Cyber_Security_Framework|Cyber Security Framework]]
 +
*[[Cyber_Security_Incident|Cyber Security Incident]]
 +
*[[Cyber_Security_Incident_Response|Cyber Security Incident Response]] (CIR)
 +
*[[Cyber_Security_Insurance|Cyber Security Insurance]]
 +
*[[Cyber_Security_Kill_Chain|Cyber Security Kill Chain]]  
 +
*[[Cyber_Security_Risk|Cyber Security Risk]]  
  
'''G'''
+
| '''C'''  
* [[Governance]]
+
*[[Cyber_Security_Threats|Cyber Security Threats]]
 +
**[[The_Human_Element|The Human Element]]
 +
***[[Social_Engineering|Social Engineering]]
 +
***[[Financial_Pretexting|Financial Pretexting]]
 +
***[[Digital_Extortion|Digital Extortion]]
 +
***[[Insider_Threat|Insider Threat]]
 +
***[[Partner_Misuse|Partner Misuse]]
 +
***[[Hacktivist_Attack|Hacktivist Attack]]
 +
***[[Disgruntled_Employees|Disgruntled Employees]] 
 +
**[[Conduit_Devices|Conduit Devices]]
 +
***[[USB_Infection|USB Infection]]
 +
***[[Peripheral_Tampering|Peripheral Tampering]]
 +
***[[Rogue_Connection|Rogue Connection]]
 +
***[[Logic_Switch|Logic Switch]]
 +
***[[C2_Takeover|C2 Takeover]]
 +
***[[Mobile_Assault|Mobile Assault]]
 +
***[[IoT_Calamity|IoT Calamity]] 
 +
**[[Configuration_Exploitation|Configuration Exploitation]]
 +
***[[SQL_Injection|SQL Injection]]
 +
***[[CMS_Compromise|CMS Compromise]]
 +
***[[Backdoor_Access|Backdoor Access]]
 +
***[[DNS_Tunneling|DNS Tunneling]]
 +
***[[Website_Defacement|Website Defacement]]
 +
***[[DDoS_Attack|DDoS Attack]]
 +
***[[ICS_Onslaught|ICS Onslaught]]
 +
***[[Cloud_Storming|Cloud Storming]] 
 +
**[[Malicious_Software|Malicious Software]]
 +
***[[Data_Ransomware/Crypto_Malware|Data Ransomware/Crypto Malware]]
 +
***[[Sophisticated_Malware|Sophisticated Malware]]
 +
***[[RAM_Scraping|RAM Scraping]]
 +
***[[Credential_Theft|Credential Theft]]
 +
***[[Unknown_Unknowns|Unknown Unknowns]]   
 +
*[[Cyber_Security_Team|Cyber Security Team]]  
  
'''H'''  
+
'''D'''
* [[Hacktivists]]
 
* [[Human error]]
 
  
'''I'''
+
*[[Data_Breach|Data Breach]]  
* [[Incident Response]]
+
*[[Data_Management|Data Management]]  
* [[Information Asset]]
+
*[[Data_Recovery|Data Recovery]]  
* [[Information Security]]
+
*[[Denial_of_Service|Denial of Service]]  
* [[Information Security Team]]
+
*[[Domain_Name_System|Domain Name System]] (DNS)
* [[Information Technology]]
+
*[[Drivers|Drivers]]  
* [[Information Technology Security Team]]
 
* [[Integrity]] of Data
 
  
'''L'''  
+
| '''E'''  
* [[Leadership]]
+
*[[Email|Email]]  
* [[Legislation]]
+
*[[Encryption|Encryption]]
 +
*[[Escalation|Escalation]]
 +
*[[Extortion|Extortion]]  
  
'''M'''  
+
'''F'''
* [[Malware]]
 
* [[Management Commitment]]
 
* [[Mitigation]]
 
* [[Monitoring]]
 
  
'''N'''
+
*[[Firewall|Firewall]]  
* [[NIST Framework]]
+
*[[Forensics|Forensics]]  
* [[Notification]]
 
  
'''O'''  
+
'''G'''
  
* [[Off-site]]
+
*[[Governance|Governance]]  
  
|'''P'''
+
'''H'''
  
* [[Patch]]
+
*[[Hacktivists|Hacktivists]]
* [[Personally Identifiable Information]] (PII)
+
*[[Human_Error|Human Error]]
* [[Phishing]]
+
 
* [[Physical/Virtual Server]]
+
'''I'''
* [[Prevention]]
+
 
* [[Preventive Action]]  
+
*[[Incident_Response|Incident Response]]
* [[Privilege]]
+
*[[Information_Asset|Information Asset]]
 +
*[[Information_Security|Information Security]]
 +
*[[Information_Security_Team|Information Security Team]]
 +
*[[Information_Technology|Information Technology]]
 +
*[[Information_Technology_Security_Team|Information Technology Security Team]]
 +
*[[Integrity|Integrity]] of Data
 +
 
 +
'''L'''
 +
 
 +
*[[Leadership|Leadership]]
 +
*[[Legislation|Legislation]]
 +
 
 +
'''M'''
 +
 
 +
*[[Malware|Malware]]
 +
*[[Management_Commitment|Management Commitment]]
 +
*[[Mitigation|Mitigation]]
 +
*[[Monitoring|Monitoring]]
 +
 
 +
'''N'''
 +
 
 +
*[[NIST_Framework|NIST Framework]]
 +
*[[Notification|Notification]]
 +
 
 +
| '''O'''
 +
*[[Off-site|Off-site]]
 +
 
 +
'''P'''
 +
 
 +
*[[Patch|Patch]]  
 +
*[[Personally_Identifiable_Information|Personally Identifiable Information]] (PII)  
 +
*[[Phishing|Phishing]]  
 +
*[[Physical/Virtual_Server|Physical/Virtual Server]]  
 +
*[[Prevention|Prevention]]  
 +
*[[Preventive_Action|Preventive Action]]  
 +
*[[Privilege|Privilege]]  
  
 
'''R'''
 
'''R'''
  
* [[Ransomware]]
+
*[[Ransomware|Ransomware]]  
* [[Redundancy]]
+
*[[Redundancy|Redundancy]]  
* [[Replication]]
+
*[[Replication|Replication]]  
* [[Resiliency]]
+
*[[Resiliency|Resiliency]]  
* [[Responsive Action]]  
+
*[[Responsive_Action|Responsive Action]]  
* [[Risk Assessment]]
+
*[[Risk_Assessment|Risk Assessment]]  
* [[Risk Management]]
+
*[[Risk_Management|Risk Management]]  
* [[Risk Mitigation]]
+
*[[Risk_Mitigation|Risk Mitigation]]  
  
 
'''S'''
 
'''S'''
  
* [[Social Engineering]]
+
*[[Social_Engineering|Social Engineering]]  
* [[Social Media]]
+
*[[Social_Media|Social Media]]  
* [[Storage]]
+
*[[Storage|Storage]]  
  
 
'''T'''
 
'''T'''
  
* [[Testing and Exercising]]
+
*[[Testing_and_Exercising|Testing and Exercising]]  
* [[Training]]
+
*[[Training|Training]]  
  
 
'''U'''
 
'''U'''
  
* [[User Account]]
+
*[[User_Account|User Account]]  
  
'''V'''
 
  
* [[Voice Communication]]
 
 
 
|}
 
|}
 +
 +
{{References}}
  
 
[[Category:BCM Institute Cyber Security Glossary]]
 
[[Category:BCM Institute Cyber Security Glossary]]
 
 
{{References}}
 

Latest revision as of 12:19, 24 June 2021

BCM Institute and Standards Glossary

Business Continuity Management | Crisis Management | Crisis Communication | Disaster Recovery | Operational Resilience | Guide | BCM Audit | Cyber Security | Pandemic Flu | Supply Chain BCM | ISO22301 | ISO22320 | ISO22390 | ISO22399 | ISO31000 | ANZ5050 | ASIS | BS25999 | MS1970 | NFPA1600 | SS540 | ENISA | ITIL | NCEMA

Gain A Global Certification via Blended Learning
Languages Language: 

English

== About BCMpedia ==

BCM Institute's Professional Training and Certification
Click to know more about expert level training
Click to know more about specialist level training

Business Continuity Management Institute (BCM Institute) Glossary in Wiki (Version 1.0) or BCMpedia provides Business Continuity (BC), Crisis Management (CM), Crisis Communication (CC), Operational Resilience, BCM Audit, Disaster Recovery (DR) and Operational Resilience (OR), Professional with definitions that help to reduce confusion, thus promoting a common understanding and interpretation when implementing the BCM planning process. While a defined word or phrase can have several other meanings or connotations, especially on its usage and interpretation, this BCM Institute's Wiki site or BCMpedia will provide you with one of the closest definitions.

It is also the most comprehensive set of business continuity and disaster recovery definitions as it includes most of the key definitions from the other sources. The definition includes similar terms used by ISO ISO22301, and older (centralised into ISO22301) standards such as the British Standard BS25999, Singapore Standard SS540, Australian Standard ANZ5050, and ASIS. Business Continuity Management: Preparedness,Crisis Communication, Crisis Management, Disaster Recovery and Operational Resilience, etc. The site map for http://www.bcmpedia.org.

BCMPedia CyberSecurity.png


Cyber Security (Incident Response) Glossary

A

B

C

C

D

E

F

G

H

I

L

M

N

O

P

R

S

T

U



Certification Menu | BCCP | CMCP | CCCP | DRCP | ORCP | BCCS | CCCS | CMCS | DRCS | ORCS | BCCE | CMCE | CCCE | DRCE | ORCE | BCCA | BCCLA
Competency Level Menu | CL 1B | CL 2B | CL 3B | CL 1C | CL 2C | CL 3C | CL 1CC | CL 2CC | CL 3CC | CL 1D | CL 2D | CL 3D | CL 1OR | CL 2OR | CL 3OR | CL 2A | CL 3A
Body of Knowledge Menu| BoK 1 | BoK 2 | BoK 3 | BoK 4 | BoK 5 | BoK 6 | BoK 7
Level of Expertise Menu | KNOW | DO | MANAGE

Retrieved from "https://www.bcmpedia.org/w/index.php?title=Cyber_Security_Glossary&oldid=34587"