Term
| Cheif Iformation Security Officer |
|
Definition
| This position i typically considered the top information security officer in an organization. The CISO is usually not an executive level position, and frequently the person in this role will report to the cheif information officer. |
|
|
Term
|
Definition
| Accountable for the day to day operation of the inforemation security program, and responsible for accomplishing objectives identified by the CISO and resolve issues identified by technicians. |
|
|
Term
|
Definition
| technically quallified indivigual tasked to configure firewalls, deploy IDSs, implement security software, diagnose and troublshooot problems, and coordinate with systems and network administrators to ensure that an oraganization's security technology is properly implemented. |
|
|
Term
| SSCP covers seven domains, they are: |
|
Definition
Access controls
Administration
Audit and Monitoring
Risk, response, and recovery
Cryptography
Data Communications
Malicious coade and malware |
|
|
Term
|
Definition
| A disscussion at the end of employment that reminds an employee of contractual obligations, such as nondisclosure agreements and obtains feedback on the employee's tenure in the organization. |
|
|
Term
|
Definition
| A control used to reduce the chance of an individual violating information security and breaching the confidentiality, integrity, or availability of the information. |
|
|
Term
|
Definition
| a security check that requires that two indiviguals review and approve each other's work before a task is categorized as finished. |
|
|
Term
|
Definition
| Synonymous with task rotation. A security ceck that requires that every employee is trained to perfore the work of another employee. |
|
|
Term
|
Definition
| A security measure by which employees are robided access to a mnima amount of information for a minimal amount of time necessary for them to perform their duties. |
|
|
