// THREAT DETECTION AND DATA PRIVACY TERM
Control
In cybersecurity, a control is a safeguard or countermeasure put in place to protect information systems, assets, or data from threats. During an incident, controls are specific actions or mechanisms used to manage, mitigate, or recover from the event.
TECHNICAL DEFINITION
A control in cybersecurity and incident response refers to a technical, administrative, or physical safeguard implemented to prevent, detect, or respond to security incidents by reducing risk and protecting organizational assets. These measures are crucial for maintaining the confidentiality, integrity, and availability (CIA triad) throughout the incident lifecycle, often categorized as preventative, detective, or corrective controls.
BACKGROUND
Computer security is a subdiscipline within the field of information security. It focuses on protecting computer software, systems, and networks from threats that can lead to unauthorized information disclosure, theft, or damage to hardware, software, or data, as well as to the disruption or misdirection of the services they provide.
READ MORE ON WIKIPEDIASYNONYMS & ALIASES
- Safeguard
- Countermeasure
- Security control
- Protective measure
- Mitigation
- Defense mechanism
- Enforcement
USAGE NOTE
Controls are fundamental throughout the incident response process, from proactive risk management to reactive containment and recovery actions.
DEVELOPERS
Organizations developing technology related to Control.
Develops advanced cybersecurity platforms that provide network security, cloud security, and endpoint protection, enabling organizations to control access and mitigate threats across their digital infrastructure.
Offers cloud-native endpoint protection, threat intelligence, and security operations solutions that provide real-time visibility and control over endpoint activities and advanced threat detection and response.
Provides a comprehensive suite of cybersecurity solutions, including next-generation firewalls, endpoint security, and network access control, to enable organizations to secure and control their networks and data.
A leading provider of networking and cybersecurity solutions, offering technologies like network access control (NAC), intrusion prevention systems (IPS), and secure network segmentation to enforce security policies and control access.
Through its vast array of security products (e.g., Microsoft Defender, Azure Security Center, Azure Active Directory), Microsoft provides extensive capabilities for identity and access control, endpoint management, and cloud security controls.
Specializes in identity and access management (IAM) solutions, enabling organizations to securely connect users to applications and devices, thereby providing robust control over who can access what.
Delivers a cloud-native security platform offering secure web gateway, zero trust network access, and cloud firewall services, providing granular control over user access to applications and the internet from anywhere.
Focuses on exposure management, providing solutions like Nessus and Tenable.io that help organizations identify, analyze, and control vulnerabilities across their IT environment to reduce cyber risk.