Enhancing Cyber Resilience through Assurance

To increase network speed

To ensure confidentiality, integrity, and availability of data

To reduce hardware costs

To simplify user authentication

To eliminate all cyber threats

To identify, assess, and mitigate risks to ICT systems

To monitor employee productivity

To automate software updates

A document outlining daily IT tasks

A set of procedures for detecting, responding to, and recovering from cyber incidents

A list of all network devices

A schedule for software upgrades

It reduces the need for technical controls

It helps staff recognise and respond to security threats

It increases the number of passwords used

It replaces the need for firewalls

Antivirus software

Password-protected user accounts

Data encryption

Network cabling

To increase internet speed

To protect data during transmission across networks

To manage user accounts

To monitor physical access to servers

Regular data backups

Disabling firewalls

Sharing passwords

Ignoring software updates

Giving all users administrator rights

Granting users only the access necessary for their job

Allowing guests to access all files

Removing all access controls

Risk assessment

Risk avoidance

Risk transfer

Risk acceptance

Ignoring minor security breaches

Clearly defined roles and responsibilities

Allowing unmonitored remote access

Disabling antivirus software