The FREE Cybersecurity Glossary by Thor Pedersen!

Security awareness coordinator: A person responsible for overseeing and managing a security awareness program. They are responsible for developing and implementing security awareness campaigns, as well as providing ongoing support and education to employees. Examples of a security awareness coordinator include a human resources manager or a dedicated security team member.

Security awareness program: A structured and comprehensive plan to educate employees on security practices and protocols. It is used in organizations to ensure that all employees are aware of security measures and are trained on how to properly implement them. Examples of a security awareness program include regular training sessions, online resources and tutorials, and security quizzes and tests.

Security baseline: A set of minimum security standards and requirements that must be met by an organization or system. It is used as a benchmark to assess the current level of security and identify areas for improvement. Examples of a security baseline include required password strength and expiration, minimum encryption standards, and regular security audits.

Security champions: Individuals within an organization who are responsible for promoting and advocating for security best practices. They may educate employees on security policies and procedures and help to identify and address potential vulnerabilities. For example, a security champion at a company may lead training sessions on password management, or a security champion at a school may help to implement security controls on the school's network.

Security Control Frameworks: Organizational guides that establish the structured implementation and management of security controls, policies, and procedures. These frameworks help standardize practices across industries and often include benchmarks for assessing security maturity, such as the ISO 27001 standard for information security and the NIST Cybersecurity Framework for critical infrastructure protection.

Security controls: Measures and protocols are put in place to protect an organization or system from security threats and vulnerabilities. It is used to prevent security breaches and maintain the confidentiality, integrity, and availability of information and resources. Examples of security controls include firewalls, access controls, and intrusion detection systems.