Fandom

The IT Law Wiki

Information system security controls

32,640pages on
this wiki
Add New Page
Talk0 Share

Definition Edit

Information system security controls are

[s]ecurity controls (i.e., safeguards or countermeasures) prescribed for an information system to protect the confidentiality, integrity, and availability of the system and its information. Three types of security controls:
(1) Management: These controls focus on the management of risk and the management of information system security;
(2) Operational: These controls are primarily implemented and executed by people (as opposed to systems); and
(3) Technical: The controls are primarily implemented and executed by the information system through mechanisms contained in the hardware, software, or firmware components of the system.[1]

References Edit

  1. 12 FAM 090 (full-text).

Ad blocker interference detected!


Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.