A better word for cybersecurity is information security. It includes the controls, governance, technology practices and defensive countermeasures which are all designed and practiced in the organization in order to restrict access to sensitive business information and data, and to reduce risk. A large factor in information security is the "people component" - the process and policy which builds secure work practices into teams. Security policy maps heavily to financial, risk and compliance controls as well, and security audit is closely related to financial and accounting controls audit. Good security skills and practices in an organization consist of well integrated technology tools and frameworks, business process and policy, and project and work/build practices. It also includes response and recovery tools, such as response plans for when intrusions are detected, how to detect intrusions, and risk reduction measures like business continuity planning.
Techtown provides assessment, consulting, training and certification on every major area of enterprise information security. Our experts bring deep experience with the security needs of many industries, including military, private sector, and public agency security.
