Cybersecurity Standards Vs Procedures Vs Controls vs Policies
ignyte, Friday, January 26th, 2024
Cybersecurity is a vast and complex field, and it's made more complicated as technology - both infrastructure and in terms of cyberattacks - grows more and more sophisticated.
Any large and complex industry grows terminology and jargon like leaves on a tree, and cybersecurity is no different. There are dozens, if not hundreds, of specialized terms that are used in narrow and specific ways throughout the industry. Making assumptions, using common language definitions, or just not knowing what they mean is a recipe for disaster.
Four interrelated terms used in cybersecurity are Policies, Procedures, Standards, Guidelines, and Controls. They have specific meanings, but what are they, and how do they relate to one another? Let's discuss.