What is what in IT
 |
IS risk analysis
• Identify assets and their owners
• Identify threats
• Identify vulnerabilities that threats could exploit
• Identify the probabilities and impacts of risks
• Assess the impact on operations
• Assess the real probability of a security failure
• Estimate the level of risks
• Determine the acceptability of risks or their management according to established criteria
|
|
• Know your assets • Know your threats • Define your RTO and RPO • Set up sites for disaster recovery • Test backup and restore services
is a risk that a person is willing to accept, or admit, undergo
is any information you knowingly post online, opinions, ratings, social media interests, photos, addresses, family information, searches, videos watched, music listened t... more...
|
is a summary of measures in the relevant area to reduce the probability of the occurrence of dangerous situations
is a system of measures aimed at the protection of classified facts during their creation, receipt, registration, transport, storage, reproduction, elimination and storag... more...
• Catastrophic • Serious • Medium • Minimal • Negligible
Source: it-portal.sk
|
means the possible time of use of the service, hardware, software or other resources for operation, given in %.
• 3 Copies • 2 Media • 1 Location outside
Source: it.portal
• 3 Copies • 2 Media • 1 Location outside - Off-site • 1 Backup without connectivity - Offline • 0 Error
Source: it.portal
• Business continuity team • List of basic services • Criticality factor of basic services • Action plan to maintain the basic service • Key customers more...
|
|
 Actual incidents
|
6 |
What is what in IT
|
66 |
is a space that is intended for the continuous operation of computer servers, systems and data storage.
is, among other things, a malicious computer program that records everything you type on your keyboard, including words, characters and symbols, and sends all recorded de... more...
show all
Interesting
|
22 |
Google v utorok oznámil vydanie prehliadača Chrome 120 s opravami 10-tich zraniteľností.
06. 12. 2023
Tens of thousands of Microsoft Exchange email servers in Europe, the US and Asia are vulnerable to remote code execution. There is a version of the software in the mail s... more...
show all
Recomendations
|
377 |
Implement regular training and awareness
Source: it.portal
I don't have to deal with security when I have infrastructure with a service provider such as Data center
Source: it-portal.sk
show all
Institutions
|
51 |
The Computer Emergency Response Team for the EU institutions, bodies and agencies show link
The Netherlands Enterprise Agency (RVO) show link
show all
Legislative
|
82 |
Nariadenie Európskeho parlamentu a Rady (EÚ) 2024/2847 z 23. októbra 2024 o horizontálnych požiadavkách kybernetickej bezpečnosti pre produkty s digitálnymi prvkami a o z... more...
show link
Source: Eur-Lex
Zákon o kybernetické bezpečnosti show link
Source: e-sbirka
show all
Norms
|
25 |
Information security, cybersecurity and privacy protection — Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1 — Amendment 1
Source: ISO
Information technology — Security techniques — Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors
more...
Source: ISO
show all
Technologies
|
14 |
Infographics
|
7 |
Events
|
0 |
Certifications
|
0 |
Acreditations
|
0 |
Media
|
436 |
|
SK
CZ
EN