Scribd
Upload
117 views1 page

Information Security Vs Cybersecurity

Information security focuses on preserving the confidentiality, integrity and availability of information, as well as other properties such as authenticity and accountability. Cybersecurity aims to safeguard people, organizations and nations from cyber risks when information is in digital form and networks. It concerns managing information security risks that can extend across organizational boundaries in cyberspace. Cybersecurity is a broader term that includes information security as well as the protection of systems, networks and information from cyber attacks or damage.

Uploaded by

Quoc Toan Doan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
117 views1 page

Information Security Vs Cybersecurity

Information security focuses on preserving the confidentiality, integrity and availability of information, as well as other properties such as authenticity and accountability. Cybersecurity aims to safeguard people, organizations and nations from cyber risks when information is in digital form and networks. It concerns managing information security risks that can extend across organizational boundaries in cyberspace. Cybersecurity is a broader term that includes information security as well as the protection of systems, networks and information from cyber attacks or damage.

Uploaded by

Quoc Toan Doan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 1

Terms: Information Security and Cybersecurity

13.02.2023
ISO/IEC Information Security
27000:2018 Preservation of confidentiality, integrity and availability of information
Note 1 to entry: In addition, other properties, such as authenticity, accountability, non-repudiation, and
reliability can also be involved.
ISO/IEC TS Cybersecurity
27100:2020 Safeguarding of people, society, organizations and nations from cyber risk.
Note 1 to entry: Safeguarding means to keep cyber risks at a tolerable level.
Cybersecurity is a broad term used differently through the world.
Cybersecurity concerns managing information security risks when information is in digital form in computers,
storage and networks. Many of the information security controls, methods, and techniques can be applied
to manage cyber risks.
ISO/IEC 27001 provides requirements for information security management systems. The focus of ISO/IEC
27001 is on security of information, and associated risks, within environments predominantly under the
control of a particular organization. Cybersecurity focuses on the risks in cyberspace, an interconnected
digital environment that can extend across organizational boundaries, and in which entities share
information, interact digitally and have responsibility to respond to cybersecurity incidents.
ISO 31700- Cybersecurity
1:2023 Protection of an IT-system from attacks or damage to its hardware, software or information, as well as from
disruption or misdirection of the services it provides.
ISACA Cybersecurity
1. The protection of information assets by addressing threats to information processed, stored and
transported by internetworked information systems
2. Protection and restoration of products, services, solutions, and supply chain; including technology,
computers, telecommunications systems and services, and information; to ensure their availability,
integrity, authentication, transport, confidentiality, and resilience. Cybersecurity is a part of
information security. (CMMI)
NIST Cybersecurity
1. Prevention of damage to, protection of, and restoration of computers, electronic communications
systems, electronic communications services, wire communication, and electronic communication,
including information contained therein, to ensure its availability, integrity, authentication,
confidentiality, and nonrepudiation.
2. The process of protecting information by preventing, detecting, and responding to attacks
3. The ability to protect or defend the use of cyberspace from cyber attacks.
4. The prevention of damage to, unauthorized use of, exploitation of, and—if needed—the restoration of
electronic information and communications systems, and the information they contain, in order to
strengthen the confidentiality, integrity and availability of these systems.
Information security
1. The protection of information and systems from unauthorized access, use, disclosure, disruption,
modification, or destruction in order to provide confidentiality, integrity, and availability.
2. The protection of information and information systems from unauthorized access, use, disclosure,
disruption, modification, or destruction in order to provide confidentiality, integrity, and availability.
Gartner Information security is the safeguarding of information and information systems against deliberate and
unintentional unauthorized access, disruption, modification and destruction by external or internal actors.
Cybersecurity is the combination of people, policies, processes and technologies employed by an enterprise
to protect its cyber assets. Cybersecurity is optimized to levels that business leaders define, balancing the
resources required with usability/manageability and the amount of risk offset. Subsets of cybersecurity
include IT security, IoT security, information security and OT security.
NCSC Cyber security
The protection of devices, services and networks — and the information on them — from theft or damage.
ACSC Cyber security
Measures used to protect the confidentiality, integrity and availability of systems, devices and the information
residing on them.
Information security (INFOSEC)
The protection of information and information systems from unauthorised access, use, disclosure, disruption,
modification or destruction in order to provide confidentiality, integrity and availability.
PCI CSS Information Security
Protection of information to insure confidentiality, integrity, and availability.
by Andrey Prozorov, CISM, CIPP/E, CDPSE, LA 27001
www.patreon.com/AndreyProzorov

You might also like