Cyber Hygiene: A Baseline Set of Practices

Abstract

Contents Include: Cyber Hygiene A Baseline Set of Practices: Cybersecurity hygiene is a set of practices for managing the most common and pervasive cybersecurity risks faced by organizations today. 1. Identify and prioritize key organizational services, products and their supporting assets. 2. Identify, prioritize, and respond to risks to the organizations key services and products. 3. Establish an incident response plan. 4. Conduct cybersecurity education and awareness activities. 5. Establish network security and monitoring. 6. Control access based on least privilege and maintain the user access accounts. 7. Manage technology changes and use standardized secure configurations. 8. Implement controls to protect and recover data. 9. Prevent and monitor malware exposures. 10. Manage cyber risks associated with suppliers and external dependencies. 11. Perform cyber threat and vulnerability monitoring and remediation.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2017
Accession Number
AD1088243

Entities

People

  • Charles M. Wallen
  • Matt Trevors

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Application Software
  • Computer Network Security
  • Configuration Management
  • Continuity
  • Cyber Threats
  • Cybersecurity
  • Education
  • Engineering
  • Governments
  • Information Exchange
  • Risk
  • Risk Management
  • Security
  • Software Development
  • Standards
  • Training
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Organizational Process Management (OPM).

Technology Areas

  • Cyber