cyris360-framework

2.1 Corporate Security

Content

• 2.1.1 Network & Infrastructure Security
• 2.1.2 Enterprise Identity and Access Management (IAM)
• 2.1.3 Data Loss Prevention (DLP)
• 2.1.4 Building a Security Operation Center (SOC)

2.1.1 Network & Infrastructure Security

Objectives:

• Physical security (For on-premise infrastructure)
• Attack surface management (DNS, Email, SSL/TLS)
• Corporate network (Wi-Fi, VPN, ZeroTrust)
• Network configuration (ALB, WAF, ACL)
• Backend security (Hypervisors, Containers)

2.1.2 Enterprise Identity and Access Management (IAM)

Objectives:

• Secure Authentication (Strong password, MFA)[5]
• Authorization - Principle of least privilege
• Privilege escalation & Breakglass
• Secret Management [6]

2.1.3 Data Loss Prevention (DLP)

Objectives:

• Data protection & encryption [4]
• Unified Endpoint Management (UEM) [3]
• Data Backup

2.1.4 Building a Security Operation Center (SOC)

Objectives:

• Log collection & protection
• Incident detection & Notification
• Incident management [2]

This site is open source. Improve this page.