Real life example of Cyber risk response. This might help you to understand some key concept in cyber world. After all, Cyber Security don't have to be boring, right. Then read on, this might help you smile.
Threat Actors = someone who wants to punch you in the face.
Threat =
the punch being thrown.
Severity = whether you fall down after the punch, and how long it might take for you to stand up again.
Vulnerability = your inability to defend against the punch
Risk = the likelihood of getting punched in the face
Acceptable Risk = your willingness to be punched in the face
Attack Surface = the size and shape of your face
Impact = broken nose, medical bills, lost time at work
Single loss event = one tooth,
Risk appetite = number of teeth willing to part with,
Compensating control = dentures / Mate who was in the special forces'
Vulnerability Assessment = checking the size and shape of your face
Compliance = how you think this all works until you've been punched in the face
Risk posture = whether you know that talking shit in a pub is likely to get you
punched in the face or not.
RTO = how long it takes you to regain consciousness
RPO = how much you forget when you blacked out
Cyber Risk Insurance = your mates at the pub betting on if you can "talk that kinda shit" and not get punched in the face
Penetration testing / PEN TEST = saying "boo" very loudly to see if you'll protect your face
Red Team = boxing
Exploit = the fist
0day = kick in the groin
Side channel = your wallet being nicked whilst you are being punched in the face.
APT = a mate who also wants to punch you in the face
Unhackable = Pissing off professional boxers while bragging about your knowledge of Karate.
Bounty Hunter = someone who promises to wear gloves when they punch you if you promise to pay them based on where they punch you
Bug Crowd = cage fight organizer.
Security stack / Blue Team = your mates at the pub with you
Patch Tuesday = your weekly gym visit
Alert = friend who calls an ambulance.
Investigation ➡️ triage: the EMTs who arrive.
Incident response: the doctors who remediate your punched face.
Digital forensic: documenting your injuries to reconstruct the type of punch in
detail.
Threat Intelligence = pointing at a person that has a history of punching
people in the face.i e, “Bob’s going to come at you with a right cross”
Air gap = avoiding the pub by staying at home
DEFCON presentation = all of your friends getting drunk in Las Vegas watching
video of you being punched in the face.
Enjoy your day.
credit: it all started from caseyjohnellis @cje twitter account
Thanks
Faysal Hasan Connect with me in Linked In
0 comments:
Post a Comment