Concept
Frameworks
NIST CSF: Identify, Protect, Detect, Respond, Recover. COBIT: IT governance. ISO 27001: information security management.
PostedUpModule Details
ISCLesson 3 of 3
Cybersecurity & IT Governance
Key Point
SOC Reports
SOC 1: financial reporting controls. SOC 2: security/availability/integrity/confidentiality/privacy. SOC 3: general use. Type I: design only. Type II: design + operating effectiveness.
Concept
Disaster Recovery
RPO: max data loss tolerance. RTO: max downtime tolerance. Hot site (immediate), Warm (hours), Cold (days/weeks).
Ready to test your knowledge?
Practice questions from this module to reinforce what you learned.