Security Architecture (Protect)

"Prevention is ideal, but detection is a must."

Security Architecture is the foundation of the Protect function of NIST CSF. It involves designing networks, systems, and applications to be inherently resistant to compromise.

Core Concepts

Defense in Depth: Layering security controls (Perimeter, Network, Endpoint, Data) so that if one fails, others remain.
Zero Trust: "Never trust, always verify." Assuming the network is already hostile.
Least Privilege: Users and systems should only have the bare minimum access required to function.

Section Contents

📄 Endpoint Hardening
Securing the OS against exploitation using native controls and EDR.
📄 Identity & Access Management
Securing Digital Identities and Privileged Access.
📄 Network Security
Implementing Zero Trust Architecture, Micro-segmentation, and NGFW strategies.

Security Architecture (Protect)

Core Concepts

Section Contents

:(