Cybersecurity refers to the body of technologies, processes, and practices designed to protect networks, devices, programs, and data from attack, damage, or unauthorized access. Ensuring cybersecurity requires the coordination of efforts throughout an information system, which includes:
• Application Security
• Information Security
• Network Security
• Identity Management
• Endpoint Security
• Cloud Security
• Mobile Security
• Disaster Recovery
• Operational Security
• End-user Education
The most difficult challenge in cybersecurity is the ever-evolving nature of security risks themselves. Traditionally, organizations and the government have focused most of their cybersecurity resources on perimeter security to protect only their most crucial system components and defend against known threats. Today, this approach is insufficient, as the threats advance and change more quickly than organizations can keep up with. As a result, advisory organizations promote more proactive and adaptive approaches to cybersecurity. Similarly, the National Institute of Standards and Technology (NIST) issued guidelines in its risk assessment framework that recommend a shift toward continuous monitoring and real-time assessments, a data-focused approach to security as opposed to the traditional perimeter-based model