The practice of safeguarding an organization’s assets, which encompasses both physical and digital forms, to prevent unauthorized access, theft, and damage. This involves implementing security controls like access management, encryption, physical security measures, and regular security audits to ensure the confidentiality, integrity, and availability of assets.