הצטרפו אלינו
הצטרפו אלינו
  • בקרה

Administrative Controls

Policy and Process-Based Security

What are Administrative Controls?

Administrative Controls are security measures implemented through policies, procedures, and governance frameworks rather than technical mechanisms. They define how security is managed within an organization.

Examples include security policies, User Awareness Training, incident response procedures, and Risk Assessment processes. These controls complement Technical Controls and Physical Controls within a Defense in Depth strategy.

What are Administrative Controls used for?

Administrative controls are used to establish governance, define responsibilities, and guide employee behavior. They are essential for ensuring compliance with regulations such as ISO/IEC 27001 and frameworks like NIST Cybersecurity Framework.

They help reduce risks such as Social Engineering and Insider Threat by promoting awareness and enforcing structured processes. They also support Governance, Risk, and Compliance (GRC) initiatives.

אולי יעניין אותך

Threat Hunting
Proactive Threat Detection Endeavor
Threat hunting proactively searches for hidden threats. Learn how it improves detection and reduces risk.
קראו
The Open Worldwide Application Security Project (OWASP)
Application Security Initiative
OWASP focuses on improving application security. Learn how it helps mitigate web vulnerabilities.
קראו
Business Email Compromise (BEC)
Email-Based Financial Fraud Attack
BEC attacks use email impersonation to commit fraud. Learn how they work and how to prevent financial losses.
קראו
הצטרפו אלינו

שים לב!
כל שימוש באתר מחייב קודם כל הסכמה לתנאי השימוש, מדיניות הפרטיות ומדיניות העוגיות שלנו.
במידה ואינך מסכים לכולם ובמלואם, אל תשתמש באתר זה.

הבנתי
מידע נוסף