Threat assessment

Threat assessment: A methodology that evaluates the relative severity of threats to an organization’s systems or data. It includes identifying potential threats, analyzing them in terms of their likelihood of occurrence and potential impact, and prioritizing them. This process enables organizations to focus their efforts and resources on the most significant threats.

Threat event

Threat event: An instance in which a threat agent actively exploits a vulnerability, potentially causing damage or disruption to a system or network. This could be a cyber-attack like a denial of service, a phishing attempt, or a ransomware attack. Understanding potential threat events and their impact helps in designing preventative controls and effective response […]

Threat hunting

Threat hunting: The proactive search for signs of malicious activity within a system or network that haven’t been detected by traditional security solutions. It involves using analytics and threat intelligence to identify abnormalities or indicators of compromise, helping to uncover stealthy, advanced threats that may have bypassed initial security defenses.

Threat Intelligence – External

Threat Intelligence – External: Data collected from outside the organization’s network about current or emerging threats. This could include information from industry forums, security news feeds, threat databases, or intelligence-sharing groups, offering insights into the broader threat landscape to enhance the organization’s defense strategy. By having outsider information on threats beyond simply what an organization […]

Threat Intelligence – Internal

Threat Intelligence – Internal: Information about potential risks that come from within an organization. This can include suspicious activities or behavior patterns of employees, contractors, or other individuals with access to the organization’s resources. Gathering and analyzing internal threat intelligence can help an organization to proactively detect and respond to insider threats, thereby reducing potential […]

TEMPEST

TEMPEST: An unofficial acronym for a set of standards for limiting electric or electromagnetic emissions emanating from electronic equipment. These standards help prevent eavesdropping on sensitive information through the interception of these emissions. Compliance with TEMPEST standards is an aspect of securing classified and sensitive information.