What is cybersecurity? - Definition from WhatIs.com

Cybersecurity is the body of technologies, processes and practices designed to protect networks, computers, programs and data from attack, damage or unauthorized access. In a computing context, the term security implies cybersecurity. According to a December 2010 analysis of U.S. spending plans, the federal government has allotted over $13 billion annually to cybersecurity over the next five years.

Ensuring cybersecurity requires coordinated efforts throughout an information system. Elements of cybersecurity include:

One of the most problematic elements of cybersecurity is the quickly and constantly evolving nature of security risks. The traditional approach has been to focus most resources on the most crucial system components and protect against the biggest known threats, which necessitated leaving some less important system components undefended and some less dangerous risks not protected against. Such an approach is insufficient in the current environment. Adam Vincent, CTO-public sector at Layer 7 Technologies (a security services provider to federal agencies including Defense Department organizations), describes the problem:

"The threat is advancing quicker than we can keep up with it. The threat changes faster than our idea of the risk. It's no longer possible to write a large white paper about the risk to a particular system. You would be rewriting the white paper constantly..."

To deal with the current environment, advisory organizations are promoting a more proactive and adaptive approach. The National Institute of Standards and Technology (NIST), for example, recently issued updated guidelines in its risk assessment framework that recommended a shift toward continuous monitoring and real-time assessments.

According to a December 2010 analysis of U.S. spending plans, the federal government has allotted over $13 billion annually to cybersecurity over the next five years.

 

Learn more:

The Department of Homeland Security offers more resources on cybersecurity.

The Computer Emergency Readiness Team provides tips on improving cybersecurity for end users.

Richard W. Walker wrote about the need for better risk management in federal cybersecurity

This was last updated in December 2010
Posted by: Margaret Rouse

Related Terms

Definitions

  • rogue employee

    - A rogue employee’s actions might be relatively innocuous or serious enough to pose a risk to business continuity. In the worst-case scenario, a rogue employee is an insider threat, actively working... (WhatIs.com)

  • Internet Storm Center

    - The Internet Storm Center is a website provided by the SANS Institute that monitors current online security attacks and publishes information about them. The site is often referred to as an Interne... (WhatIs.com)

  • Transport Layer Security (TLS)

    - The Transport Layer Security (TLS) protocol defines a mechanism to encrypt and maintain data integrity for communications over a network. (SearchSecurity.com)

Glossaries

  • Security threats and countermeasures

    - Terms related to security threats, including definitions about anti-virus programs or firewalls and words and phrases about malware, viruses, Trojans and other security attacks.

  • Internet applications

    - This WhatIs.com glossary contains terms related to Internet applications, including definitions about Software as a Service (SaaS) delivery models and words and phrases about web sites, e-commerce ...

Ask a Question. Find an Answer.Powered by ITKnowledgeExchange.com

Ask An IT Question

Get answers from your peers on your most technical challenges

Ask Question

Tech TalkComment

Share
Comments

    Results

    Contribute to the conversation

    All fields are required. Comments will appear at the bottom of the article.