#status/done

Defense in Depth

EpHyrXVW8AE9Ovj.jpg[1]

Defense in Depth refers to an information security approach in which a series of security mechanisms and controls are thoughtfully layered throughout a computer network to protect the CIA Triad of the network and the data within.[2]

Defined by NIST as integrating people, technology, and operation capabilities to establish variable barriers across multiple layers and missions of the organization.[3]

While no individual mitigation can stop all cyber threats, together they provide mitigations against a wide variety of threats while incorporating redundancy in the event one mechanism fails.

Relevant Note(s): Detection Engineering

  1. https://twitter.com/sebadele/status/1338117550887100418 ↩︎

  2. https://www.cisecurity.org/insights/spotlight/cybersecurity-spotlight-defense-in-depth-did ↩︎

  3. https://csrc.nist.gov/glossary/term/defense_in_depth ↩︎