- Home >
- Services >
- Access to Knowledge >
- Trend Monitor >
- Domain of Application >
- Trend snippet: Creating a resilient IT-infrastucture with 3 principles
Trends in Security Information
The HSD Trendmonitor is designed to provide access to relevant content on various subjects in the safety and security domain, to identify relevant developments and to connect knowledge and organisations. The safety and security domain encompasses a vast number of subjects. Four relevant taxonomies (type of threat or opportunity, victim, source of threat and domain of application) have been constructed in order to visualize all of these subjects. The taxonomies and related category descriptions have been carefully composed according to other taxonomies, European and international standards and our own expertise.
In order to identify safety and security related trends, relevant reports and HSD news articles are continuously scanned, analysed and classified by hand according to the four taxonomies. This results in a wide array of observations, which we call ‘Trend Snippets’. Multiple Trend Snippets combined can provide insights into safety and security trends. The size of the circles shows the relative weight of the topic, the filters can be used to further select the most relevant content for you. If you have an addition, question or remark, drop us a line at info@securitydelta.nl.
visible on larger screens only
Please expand your browser window.
Or enjoy this interactive application on your desktop or laptop.
Creating a resilient IT-infrastucture with 3 principles
As mentioned above, the NBV's cybersecurity approach is based on 3 main principles.
- Riskthinking; this allows organizations to consider how to get cyber resilience to the correct spot within the organization. In this, choices have to be made regarding the level of protection of the IT-infrastructure, ending with an acceptable risk level.
- Assume breach; the assumption that a cyberattack will succeed allows organizations to consider how to minimize the length, scale, and gravity of such an attack.
- Continuous improvement; as the world around us is constantly changing, it is best to create organizations and cybersecurity structures that can be easily adjusted as well.
These 3 principles build on 4 supporting pillars.
- Contextanalysis; this allows organizations to decide where a high level of cyber resilience is and isn't necessary. This way, scarce resources can be used efficiently and the slowing effects of IT-protection on organizations can be minimized.
- Resilience; for good resilience against cyberthreats, preventitive measures must be taken. This blocks or slows cyberattacks and decourages attackers.
- Detection; monitoring and detection help detect cyberattacks in a timely manner. A detection-friendly infrastructure has so-called 'chokepoints'. These are central hubs in the infrastructure where logging and network data are monitored.
- Damage minimization; an organization must be able to respond adequately to a successful cyber attack and the resulting security incident. That is why it is important to conduct digital research or have it carried out and to initiate repair work.