Defense & Operations
Security Controls
Also known as: Cybersecurity controls, Safeguards
Definition
Safeguards or countermeasures — technical, administrative, or physical — used to prevent, detect, or respond to threats against information assets.
Examples
- Combining MFA (preventive), SIEM detection (detective), and IR runbooks (corrective) for credential abuse.
- Using compensating controls such as network isolation when a legacy system cannot be patched.
Related terms
Preventive Controls
Controls designed to stop a security event from occurring in the first place by removing the opportunity or capability to act.
Detective Controls
Security measures designed to identify and alert on malicious activity, policy violations, or anomalies after they occur in an environment.
Corrective Controls
Security measures that act after an incident to limit damage, eradicate threats, and restore systems to a known-good state.
Compensating Controls
Compensating Controls — definition coming soon.
Security Posture
Security Posture — definition coming soon.
Compliance
The discipline of meeting legal, regulatory, contractual, and internal security requirements through documented controls, evidence collection, and ongoing assessment.