Control Practice: The implementation and execution of specific actions, activities, or procedures designed to meet control objectives. It serves as a concrete step in reducing risks, ensuring compliance, or improving operational efficiency. Examples can range from password policies to network monitoring procedures or regular security audits.
Categories: CC D1: Security Principles | CCSP D6: Legal - Risk and Compliance | CISM D1: Information Security governance | CISSP D1: Security and Risk Management | Security+ D5: Security Program Management and Oversight | SSCP D1: Security Concepts and Practices
« Back to Glossary Index