Security Controls
What is Security Controls?
Security ControlsSafeguards or countermeasures — technical, administrative, or physical — used to prevent, detect, or respond to threats against information assets.
Security controls are the building blocks of a defense program. They are typically classified by function (preventive, detective, corrective, deterrent, compensating, recovery) and by type (administrative such as policies, technical such as firewalls and EDR, physical such as locks and badges). Frameworks like NIST SP 800-53, ISO/IEC 27001/27002, and CIS Controls provide control catalogs that organizations select and tailor based on risk and regulatory requirements. Effective programs map controls to threats and assets, monitor their operating effectiveness, and continuously evolve the catalog as the environment and threat landscape change.
● Examples
- 01
Combining MFA (preventive), SIEM detection (detective), and IR runbooks (corrective) for credential abuse.
- 02
Using compensating controls such as network isolation when a legacy system cannot be patched.
● Frequently asked questions
What is Security Controls?
Safeguards or countermeasures — technical, administrative, or physical — used to prevent, detect, or respond to threats against information assets. It belongs to the Defense & Operations category of cybersecurity.
What does Security Controls mean?
Safeguards or countermeasures — technical, administrative, or physical — used to prevent, detect, or respond to threats against information assets.
How do you defend against Security Controls?
Defences for Security Controls typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Security Controls?
Common alternative names include: Cybersecurity controls, Safeguards.