Accession Number:

AD1088243

Title:

Cyber Hygiene: A Baseline Set of Practices

Descriptive Note:

Technical Report

Corporate Author:

CARNEGIE-MELLON UNIV PITTSBURGH PA PITTSBURGH United States

Personal Author(s):

Report Date:

2017-01-01

Pagination or Media Count:

17.0

Abstract:

Contents Include Cyber Hygiene A Baseline Set of Practices Cybersecurity hygiene is a set of practices for managing the most common and pervasive cybersecurity risks faced by organizations today. 1. Identify and prioritize key organizational services, products and their supporting assets. 2. Identify, prioritize, and respond to risks to the organizations key services and products. 3. Establish an incident response plan. 4. Conduct cybersecurity education and awareness activities. 5. Establish network security and monitoring. 6. Control access based on least privilege and maintain the user access accounts. 7. Manage technology changes and use standardized secure configurations. 8. Implement controls to protect and recover data. 9. Prevent and monitor malware exposures. 10. Manage cyber risks associated with suppliers and external dependencies. 11. Perform cyber threat and vulnerability monitoring and remediation.

Subject Categories:

  • Computer Systems Management and Standards

Distribution Statement:

APPROVED FOR PUBLIC RELEASE