Defense in Depth

Defense in Depth refers to an information security approach in which a series of security mechanisms and controls are thoughtfully layered throughout a computer network to protect the CIA Triad of the network and the data within.²

Defined by NIST as integrating people, technology, and operation capabilities to establish variable barriers across multiple layers and missions of the organization.³

While no individual mitigation can stop all cyber threats, together they provide mitigations against a wide variety of threats while incorporating redundancy in the event one mechanism fails.

Relevant Note(s): Detection Engineering

https://twitter.com/sebadele/status/1338117550887100418 ↩
https://www.cisecurity.org/insights/spotlight/cybersecurity-spotlight-defense-in-depth-did ↩
https://csrc.nist.gov/glossary/term/defense_in_depth ↩

Till Studer's Notes

Recent Notes

Eating Your Own Dog Food

The Map Is Not the Territory

The Zen of Security Rules

Public Attack Simulation Repos

Public Detection Rule Repos

Defense in Depth

Graph View

Backlinks

Till Studer's Notes

Recent Notes

Eating Your Own Dog Food

The Map Is Not the Territory

The Zen of Security Rules

Public Attack Simulation Repos

Public Detection Rule Repos

Defense in Depth

Footnotes

Graph View

Backlinks