Cybersecurity Terminology
Release: 2024-04-08
- Modified on: 2024-04-08
- This version:
- https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#
- Latest version:
- https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#
- Revision:
- 0.1
- Contributors:
- Junli Liang
- Rob Brennan
- Publisher:
- https://openark.adaptcentre.ie
- Source:
- Cybersecurity Terminology
- Download serialization:
- License:
- Visualization:
- Cite as:
- Cybersecurity Terminology. Revision: 0.1. Retrieved from: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#
Abstract
This taxonomy defines the cybersecurity terms, taken from the ISO27002 document, that are used on the ARK Platform.Introduction back to ToC
This taxonomy defines the cybersecurity terms, taken from the ISO27002 document, that are used on the ARK Platform.Namespace declarations
| arkcscOWL | <https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#> |
| dc | <http://purl.org/dc/elements/1.1/> |
| dcterms | <http://purl.org/dc/terms/> |
| ns1 | <https://openark.adaptcentre.ie/Ontologies/ARKCube#> |
| ns2 | <https://w3id.org/widoco/vocab#> |
| owl | <http://www.w3.org/2002/07/owl#> |
| rdf | <http://www.w3.org/1999/02/22-rdf-syntax-ns#> |
| rdfs | <http://www.w3.org/2000/01/rdf-schema#> |
| skos | <http://www.w3.org/2004/02/skos/core#> |
| vann | <http://purl.org/vocab/vann/> |
| xml | <http://www.w3.org/XML/1998/namespace> |
| xsd | <http://www.w3.org/2001/XMLSchema#> |
Cybersecurity Terminology: Overview back to ToC
This ontology has the following classes and properties.Classes
- Corrective
- Detective
- Organizational controls
- People controls
- Physical controls
- Preventive
- Technological controls
Named Individuals
- Acceptable use of information and other associated assets
- Access control
- Access rights
- Access to source code
- Addressing information security within supplier agreements
- Application security requirements
- Assessment and decision on information security events
- Authentication information
- Cabling security
- Capacity management
- Change management
- Classification of information
- Clear desk and clear screen
- Clock synchronization
- Collection of evidence
- Compliance with policies, rules and standards for information security
- Confidentiality or non-disclosure agreements
- Configuration management
- Contact with authorities
- Contact with special interest groups
- Data leakage prevention
- Data masking
- Disciplinary process
- Documented operating procedures
- Equipment maintenance
- Equipment siting and protection
- ICT readiness for business continuity
- Identity management
- Independent review of information security
- Information access restriction
- Information backup
- Information deletion
- Information security awareness, education and training
- Information security during disruption
- Information security event reporting
- Information security for use of cloud services
- Information security in project management
- Information security in supplier relationships
- Information security incident management planning and preparation
- Information security roles and responsibilities
- Information transfer
- Installation of software on operational systems
- Intellectual property rights
- Inventory of information and other associated assets
- Labelling of information
- Learning from information security incidents
- Legal, statutory, regulatory and contractual requirements
- Logging
- Management of technical vulnerabilities
- Management responsibilities
- Managing information security in the ICT supply chain
- Monitoring activities
- Monitoring, review and change management of supplier services
- Networks security
- Outsourced development
- Physical entry
- Physical security monitoring
- Physical security perimeters
- Policies for information security
- Privacy and protection of PII
- Privileged access rights
- Protecting against physical and environmental threats
- Protection against malware
- Protection of information systems during audit testing
- Protection of records
- Redundancy of information processing facilities
- Remote working
- Response to information security incidents
- Responsibilities after termination or change of employment
- Return of assets
- Screening
- Secure authentication
- Secure coding
- Secure development life cycle
- Secure disposal or re-use of equipment
- Secure system architecture and engineering principles
- Securing offices, rooms and facilities
- Security of assets off-premises
- Security of network services
- Security testing in development and acceptance
- Segregation of duties
- Segregation of networks
- Separation of development, test and production environments
- Storage media
- Supporting utilities
- Terms and conditions of employment
- Test information
- Threat intelligence
- Use of cryptography
- Use of privileged utility programs
- User endpoint devices
- Web filtering
- Working in secure areas
Cybersecurity Terminology: Description back to ToC
This taxonomy defines the cybersecurity terms, taken from the ISO27002 document, that are used on the ARK Platform.Cross-reference for Cybersecurity Terminology classes, object properties and data properties back to ToC
This section provides details for each class and property defined by Cybersecurity Terminology.Classes
- Corrective
- Detective
- Organizational controls
- People controls
- Physical controls
- Preventive
- Technological controls
Correctivec back to ToC or Class ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#Corrective
- Source
- ISO/IEC 27002:2022(E)
- has members
- Collection of evidence ni, Contact with authorities ni, Contact with special interest groups ni, Disciplinary process ni, Documented operating procedures ni, ICT readiness for business continuity ni, Independent review of information security ni, Information backup ni, Information security during disruption ni, Monitoring activities ni, Protection against malware ni, Response to information security incidents ni, Threat intelligence ni
Detectivec back to ToC or Class ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#Detective
- Source
- ISO/IEC 27002:2022(E)
- has members
- Assessment and decision on information security events ni, Capacity management ni, Clock synchronization ni, Data leakage prevention ni, Information security event reporting ni, Logging ni, Monitoring activities ni, Networks security ni, Outsourced development ni, Physical security monitoring ni, Protection against malware ni, Supporting utilities ni, Threat intelligence ni
Organizational controlsc back to ToC or Class ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#OrganizationalControls
- Source
- ISO/IEC 27002:2022(E)
- has members
- Acceptable use of information and other associated assets ni, Access control ni, Access rights ni, Addressing information security within supplier agreements ni, Assessment and decision on information security events ni, Authentication information ni, Classification of information ni, Collection of evidence ni, Compliance with policies, rules and standards for information security ni, Contact with authorities ni, Contact with special interest groups ni, Documented operating procedures ni, ICT readiness for business continuity ni, Identity management ni, Independent review of information security ni, Information security during disruption ni, Information security for use of cloud services ni, Information security in project management ni, Information security in supplier relationships ni, Information security incident management planning and preparation ni, Information security roles and responsibilities ni, Information transfer ni, Intellectual property rights ni, Inventory of information and other associated assets ni, Labelling of information ni, Learning from information security incidents ni, Legal, statutory, regulatory and contractual requirements ni, Management responsibilities ni, Managing information security in the ICT supply chain ni, Monitoring, review and change management of supplier services ni, Policies for information security ni, Privacy and protection of PII ni, Protection of records ni, Response to information security incidents ni, Return of assets ni, Segregation of duties ni, Threat intelligence ni
People controlsc back to ToC or Class ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#PeopleControls
- Source
- ISO/IEC 27002:2022(E)
- has members
- Confidentiality or non-disclosure agreements ni, Disciplinary process ni, Information security awareness, education and training ni, Information security event reporting ni, Remote working ni, Responsibilities after termination or change of employment ni, Screening ni, Terms and conditions of employment ni
Physical controlsc back to ToC or Class ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#PhysicalControls
- Source
- ISO/IEC 27002:2022(E)
- has members
- Cabling security ni, Clear desk and clear screen ni, Equipment maintenance ni, Equipment siting and protection ni, Physical entry ni, Physical security monitoring ni, Physical security perimeters ni, Protecting against physical and environmental threats ni, Secure disposal or re-use of equipment ni, Securing offices, rooms and facilities ni, Security of assets off-premises ni, Storage media ni, Supporting utilities ni, Working in secure areas ni
Preventivec back to ToC or Class ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#Preventive
- Source
- ISO/IEC 27002:2022(E)
- has members
- Acceptable use of information and other associated assets ni, Access control ni, Access rights ni, Access to source code ni, Addressing information security within supplier agreements ni, Application security requirements ni, Authentication information ni, Cabling security ni, Capacity management ni, Change management ni, Classification of information ni, Clear desk and clear screen ni, Compliance with policies, rules and standards for information security ni, Confidentiality or non-disclosure agreements ni, Configuration management ni, Contact with authorities ni, Contact with special interest groups ni, Data leakage prevention ni, Data masking ni, Disciplinary process ni, Documented operating procedures ni, Equipment maintenance ni, Equipment siting and protection ni, Identity management ni, Independent review of information security ni, Information access restriction ni, Information deletion ni, Information security awareness, education and training ni, Information security during disruption ni, Information security for use of cloud services ni, Information security in project management ni, Information security in supplier relationships ni, Information security incident management planning and preparation ni, Information security roles and responsibilities ni, Information transfer ni, Installation of software on operational systems ni, Intellectual property rights ni, Inventory of information and other associated assets ni, Labelling of information ni, Learning from information security incidents ni, Legal, statutory, regulatory and contractual requirements ni, Management of technical vulnerabilities ni, Management responsibilities ni, Managing information security in the ICT supply chain ni, Monitoring, review and change management of supplier services ni, Networks security ni, Outsourced development ni, Physical entry ni, Physical security monitoring ni, Physical security perimeters ni, Policies for information security ni, Privacy and protection of PII ni, Privileged access rights ni, Protecting against physical and environmental threats ni, Protection against malware ni, Protection of information systems during audit testing ni, Protection of records ni, Redundancy of information processing facilities ni, Remote working ni, Responsibilities after termination or change of employment ni, Return of assets ni, Screening ni, Secure authentication ni, Secure coding ni, Secure development life cycle ni, Secure disposal or re-use of equipment ni, Secure system architecture and engineering principles ni, Securing offices, rooms and facilities ni, Security of assets off-premises ni, Security of network services ni, Security testing in development and acceptance ni, Segregation of duties ni, Segregation of networks ni, Separation of development, test and production environments ni, Storage media ni, Supporting utilities ni, Terms and conditions of employment ni, Test information ni, Threat intelligence ni, Use of cryptography ni, Use of privileged utility programs ni, User endpoint devices ni, Web filtering ni, Working in secure areas ni
Technological controlsc back to ToC or Class ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#TechnologicalControls
- Source
- ISO/IEC 27002:2022(E)
- has members
- Access to source code ni, Application security requirements ni, Capacity management ni, Change management ni, Clock synchronization ni, Configuration management ni, Data leakage prevention ni, Data masking ni, Information access restriction ni, Information backup ni, Information deletion ni, Installation of software on operational systems ni, Logging ni, Management of technical vulnerabilities ni, Monitoring activities ni, Networks security ni, Outsourced development ni, Privileged access rights ni, Protection against malware ni, Protection of information systems during audit testing ni, Redundancy of information processing facilities ni, Secure authentication ni, Secure coding ni, Secure development life cycle ni, Secure system architecture and engineering principles ni, Security of network services ni, Security testing in development and acceptance ni, Segregation of networks ni, Separation of development, test and production environments ni, Test information ni, Use of cryptography ni, Use of privileged utility programs ni, User endpoint devices ni, Web filtering ni
Named Individuals
- Acceptable use of information and other associated assets
- Access control
- Access rights
- Access to source code
- Addressing information security within supplier agreements
- Application security requirements
- Assessment and decision on information security events
- Authentication information
- Cabling security
- Capacity management
- Change management
- Classification of information
- Clear desk and clear screen
- Clock synchronization
- Collection of evidence
- Compliance with policies, rules and standards for information security
- Confidentiality or non-disclosure agreements
- Configuration management
- Contact with authorities
- Contact with special interest groups
- Data leakage prevention
- Data masking
- Disciplinary process
- Documented operating procedures
- Equipment maintenance
- Equipment siting and protection
- ICT readiness for business continuity
- Identity management
- Independent review of information security
- Information access restriction
- Information backup
- Information deletion
- Information security awareness, education and training
- Information security during disruption
- Information security event reporting
- Information security for use of cloud services
- Information security in project management
- Information security in supplier relationships
- Information security incident management planning and preparation
- Information security roles and responsibilities
- Information transfer
- Installation of software on operational systems
- Intellectual property rights
- Inventory of information and other associated assets
- Labelling of information
- Learning from information security incidents
- Legal, statutory, regulatory and contractual requirements
- Logging
- Management of technical vulnerabilities
- Management responsibilities
- Managing information security in the ICT supply chain
- Monitoring activities
- Monitoring, review and change management of supplier services
- Networks security
- Outsourced development
- Physical entry
- Physical security monitoring
- Physical security perimeters
- Policies for information security
- Privacy and protection of PII
- Privileged access rights
- Protecting against physical and environmental threats
- Protection against malware
- Protection of information systems during audit testing
- Protection of records
- Redundancy of information processing facilities
- Remote working
- Response to information security incidents
- Responsibilities after termination or change of employment
- Return of assets
- Screening
- Secure authentication
- Secure coding
- Secure development life cycle
- Secure disposal or re-use of equipment
- Secure system architecture and engineering principles
- Securing offices, rooms and facilities
- Security of assets off-premises
- Security of network services
- Security testing in development and acceptance
- Segregation of duties
- Segregation of networks
- Separation of development, test and production environments
- Storage media
- Supporting utilities
- Terms and conditions of employment
- Test information
- Threat intelligence
- Use of cryptography
- Use of privileged utility programs
- User endpoint devices
- Web filtering
- Working in secure areas
Acceptable use of information and other associated assetsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#AcceptableUseOfInformationAndOtherAssociatedAssets
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Access controlni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#AccessControl
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Access rightsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#AccessRights
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Access to source codeni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#AccessToSourceCode
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Addressing information security within supplier agreementsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#AddressingInformationSecurityWithinSupplierAgreements
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Application security requirementsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ApplicationSecurityRequirements
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Assessment and decision on information security eventsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#AssessmentAndDecisionOnInformationSecurityEvents
- belongs to
- Detective c
- Organizational controls c
- is also defined as
- class
Authentication informationni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#AuthenticationInformation
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Cabling securityni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#CablingSecurity
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
Capacity managementni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#CapacityManagement
- belongs to
- Detective c
- Preventive c
- Technological controls c
- is also defined as
- class
Change managementni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ChangeManagement
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Classification of informationni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ClassificationOfInformation
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Clear desk and clear screenni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ClearDeskAndClearScreen
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
Clock synchronizationni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ClockSynchronization
- belongs to
- Detective c
- Technological controls c
- is also defined as
- class
Collection of evidenceni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#CollectionOfEvidence
- belongs to
- Corrective c
- Organizational controls c
- is also defined as
- class
Compliance with policies, rules and standards for information securityni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ComplianceWithPoliciesRulesAndStandardsForInformationSecurity
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Confidentiality or non-disclosure agreementsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ConfidentialityOrNon-disclosureAgreements
- belongs to
- People controls c
- Preventive c
- is also defined as
- class
Configuration managementni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ConfigurationManagement
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Contact with authoritiesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ContactWithAuthorities
- belongs to
- Corrective c
- Organizational controls c
- Preventive c
- is also defined as
- class
Contact with special interest groupsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ContactWithSpecialInterestGroups
- belongs to
- Corrective c
- Organizational controls c
- Preventive c
- is also defined as
- class
Data leakage preventionni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#DataLeakagePrevention
- belongs to
- Detective c
- Preventive c
- Technological controls c
- is also defined as
- class
Data maskingni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#DataMasking
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Disciplinary processni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#DisciplinaryProcess
- belongs to
- Corrective c
- People controls c
- Preventive c
- is also defined as
- class
Documented operating proceduresni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#DocumentedOperatingProcedures
- belongs to
- Corrective c
- Organizational controls c
- Preventive c
- is also defined as
- class
Equipment maintenanceni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#EquipmentMaintenance
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
Equipment siting and protectionni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#EquipmentSitingAndProtection
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
ICT readiness for business continuityni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ICTReadinessForBusinessContinuity
- belongs to
- Corrective c
- Organizational controls c
- is also defined as
- class
Identity managementni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#IdentityManagement
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Independent review of information securityni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#IndependentReviewOfInformationSecurity
- belongs to
- Corrective c
- Organizational controls c
- Preventive c
- is also defined as
- class
Information access restrictionni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationAccessRestriction
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Information backupni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationBackup
- belongs to
- Corrective c
- Technological controls c
- is also defined as
- class
Information deletionni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationDeletion
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Information security awareness, education and trainingni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationSecurityAwarenessEducationAndTraining
- belongs to
- People controls c
- Preventive c
- is also defined as
- class
Information security during disruptionni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationSecurityDuringDisruption
- belongs to
- Corrective c
- Organizational controls c
- Preventive c
- is also defined as
- class
Information security event reportingni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationSecurityEventReporting
- belongs to
- Detective c
- People controls c
- is also defined as
- class
Information security for use of cloud servicesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationSecurityForUseOfCloudServices
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Information security in project managementni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationSecurityInProjectManagement
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Information security in supplier relationshipsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationSecurityInSupplierRelationships
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Information security incident management planning and preparationni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationSecurityIncidentManagementPlanningAndPreparation
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Information security roles and responsibilitiesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationSecurityRolesAndResponsibilities
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Information transferni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InformationTransfer
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Installation of software on operational systemsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InstallationOfSoftwareOnOperationalSystems
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Intellectual property rightsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#IntellectualPropertyRights
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Inventory of information and other associated assetsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#InventoryOfInformationAndOtherAssociatedAssets
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Labelling of informationni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#LabellingOfInformation
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Learning from information security incidentsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#LearningFromInformationSecurityIncidents
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Legal, statutory, regulatory and contractual requirementsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#LegalStatutoryRegulatoryAndContractualRequirements
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Loggingni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#Logging
- belongs to
- Detective c
- Technological controls c
- is also defined as
- class
Management of technical vulnerabilitiesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ManagementOfTechnicalVulnerabilities
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Management responsibilitiesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ManagementResponsibilities
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Managing information security in the ICT supply chainni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ManagingInformationSecurityInTheICTSupplyChain
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Monitoring activitiesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#MonitoringActivities
- belongs to
- Corrective c
- Detective c
- Technological controls c
- is also defined as
- class
Monitoring, review and change management of supplier servicesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#MonitoringReviewAndChangeManagementOfSupplierServices
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Networks securityni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#NetworksSecurity
- belongs to
- Detective c
- Preventive c
- Technological controls c
- is also defined as
- class
Outsourced developmentni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#OutsourcedDevelopment
- belongs to
- Detective c
- Preventive c
- Technological controls c
- is also defined as
- class
Physical entryni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#PhysicalEntry
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
Physical security monitoringni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#PhysicalSecurityMonitoring
- belongs to
- Detective c
- Physical controls c
- Preventive c
- is also defined as
- class
Physical security perimetersni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#PhysicalSecurityPerimeters
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
Policies for information securityni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#PoliciesForInformationSecurity
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Privacy and protection of PIIni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#PrivacyAndProtectionOfPII
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Privileged access rightsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#PrivilegedAccessRights
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Protecting against physical and environmental threatsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ProtectingAgainstPhysicalAndEnvironmentalThreats
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
Protection against malwareni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ProtectionAgainstMalware
- belongs to
- Corrective c
- Detective c
- Preventive c
- Technological controls c
- is also defined as
- class
Protection of information systems during audit testingni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ProtectionOfInformationSystemsDuringAuditTesting
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Protection of recordsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ProtectionOfRecords
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Redundancy of information processing facilitiesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#RedundancyOfInformationProcessingFacilities
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Remote workingni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#RemoteWorking
- belongs to
- People controls c
- Preventive c
- is also defined as
- class
Response to information security incidentsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ResponseToInformationSecurityIncidents
- belongs to
- Corrective c
- Organizational controls c
- is also defined as
- class
Responsibilities after termination or change of employmentni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ResponsibilitiesAfterTerminationOrChangeOfEmployment
- belongs to
- People controls c
- Preventive c
- is also defined as
- class
Return of assetsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ReturnOfAssets
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Screeningni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#Screening
- belongs to
- People controls c
- Preventive c
- is also defined as
- class
Secure authenticationni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SecureAuthentication
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Secure codingni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SecureCoding
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Secure development life cycleni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SecureDevelopmentLifeCycle
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Secure disposal or re-use of equipmentni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SecureDisposalOrRe-useOfEquipment
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
Secure system architecture and engineering principlesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SecureSystemArchitectureAndEngineeringPrinciples
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Securing offices, rooms and facilitiesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SecuringOfficesRoomsAndFacilities
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
Security of assets off-premisesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SecurityOfAssetsOff-premises
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
Security of network servicesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SecurityOfNetworkServices
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Security testing in development and acceptanceni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SecurityTestingInDevelopmentAndAcceptance
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Segregation of dutiesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SegregationOfDuties
- belongs to
- Organizational controls c
- Preventive c
- is also defined as
- class
Segregation of networksni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SegregationOfNetworks
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Separation of development, test and production environmentsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SeparationOfDevelopmentTestAndProductionEnvironments
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Storage mediani back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#StorageMedia
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
Supporting utilitiesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#SupportingUtilities
- belongs to
- Detective c
- Physical controls c
- Preventive c
- is also defined as
- class
Terms and conditions of employmentni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#TermsAndConditionsOfEmployment
- belongs to
- People controls c
- Preventive c
- is also defined as
- class
Test informationni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#TestInformation
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Threat intelligenceni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#ThreatIntelligence
- belongs to
- Corrective c
- Detective c
- Organizational controls c
- Preventive c
- is also defined as
- class
Use of cryptographyni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#UseOfCryptography
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Use of privileged utility programsni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#UseOfPrivilegedUtilityPrograms
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
User endpoint devicesni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#UserEndpointDevices
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Web filteringni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#WebFiltering
- belongs to
- Preventive c
- Technological controls c
- is also defined as
- class
Working in secure areasni back to ToC or Named Individual ToC
IRI: https://openark.adaptcentre.ie/Ontologies/CybersecurityControl-OWL#WorkingInSecureAreas
- belongs to
- Physical controls c
- Preventive c
- is also defined as
- class
Legend back to ToC
ni: Named Individuals
References back to ToC
Add your references here. It is recommended to have them as a list.Acknowledgments back to ToC
The authors would like to thank Silvio Peroni for developing LODE, a Live OWL Documentation Environment, which is used for representing the Cross Referencing Section of this document and Daniel Garijo for developing Widoco, the program used to create the template used in this documentation.