Platform
- Overview
- Features
  - Risk ManagementManage all your business risks in one place
  - Asset ManagementDynamic asset management solution
  - Supply Chain ManagementEffortlessly integrate your supply chain
  - IntegrationsConnect with over 5,000 systems
  - HeadStartGet certified up to 5x faster
  - Assured Results MethodYour path to certification success
  - Virtual CoachYour always-on guide to ISO 27001
  - Explore All Features
Solutions
- Frameworks
  - ISO 42001The Artificial Intelligence standard
  - ISO 27001The information security standard
  - ISO 27701Data privacy for your business
  - ISO 22301Streamline your business continuity
  - ISO 9001Simplify your quality management
  - GDPRKeep on top of your data protection
  - HIPAAPrivacy & security for the healthcare sector
  - All standards and regulations
- Experience Level
  - New to ISO 27001?Don’t worry, we’ve got you covered
  - Looking to improve your compliance?Switch to a platform that gives you complete control
  - Enterprise-level complianceManage all your compliance needs with ISMS.online
- Sectors
  - Healthcare
  - Legal
  - FinTech
  - Retail
  - Automotive
  - Logistics
  - Public Sector
  - Gambling
  - Communications
  - Aviation
Customers
Learn
Partners
- Become a Partner
  - Become a PartnerTeam up with ISMS.online and empower your customers to achieve effective, scalable information management success
- Types of Partner
  - Service PartnersMake compliance your competitive advantage
  - AuditorsStreamline your audit practice
  - Technology PartnersIntegrate your products with ISMS.online
- Partner Services
  - Partner DirectoryConnect with trusted compliance experts
Log in
Get a quote
Book a demo

Get a quote Book a demo

Book a demo Get a quote

Platform
- Overview
- Features
  - Risk ManagementManage all your business risks in one place
  - Asset ManagementDynamic asset management solution
  - Supply Chain ManagementEffortlessly integrate your supply chain
  - IntegrationsConnect with over 5,000 systems
  - HeadStartGet certified up to 5x faster
  - Assured Results MethodYour path to certification success
  - Virtual CoachYour always-on guide to ISO 27001
  - Explore All Features
Solutions
- Frameworks
  - ISO 42001The Artificial Intelligence standard
  - ISO 27001The information security standard
  - ISO 27701Data privacy for your business
  - ISO 22301Streamline your business continuity
  - ISO 9001Simplify your quality management
  - GDPRKeep on top of your data protection
  - HIPAAPrivacy & security for the healthcare sector
  - All standards and regulations
- Experience Level
  - New to ISO 27001?Don’t worry, we’ve got you covered
  - Looking to improve your compliance?Switch to a platform that gives you complete control
  - Enterprise-level complianceManage all your compliance needs with ISMS.online
- Sectors
  - Healthcare
  - Legal
  - FinTech
  - Retail
  - Automotive
  - Logistics
  - Public Sector
  - Gambling
  - Communications
  - Aviation
Customers
Learn
Partners
- Become a Partner
  - Become a PartnerTeam up with ISMS.online and empower your customers to achieve effective, scalable information management success
- Types of Partner
  - Service PartnersMake compliance your competitive advantage
  - AuditorsStreamline your audit practice
  - Technology PartnersIntegrate your products with ISMS.online
- Partner Services
  - Partner DirectoryConnect with trusted compliance experts
Log in
Get a quote
Book a demo

Cyber Security

Security Controls

By Mark Sharron | Updated 8 March 2024

Jump to topic

What are security controls?

Security controls are a list of actions and measurements that allow an organisation to prioritise their efforts in protecting themselves and their important information against cybersecurity threats and personal data breaches.

Some critical controls have been set out by the National Cyber Security Centre:

Inventory of Authorised and Unauthorised Devices
Inventory of Authorised and Unauthorised Software
Secure Configurations for Hardware and Software on Mobile Devices, Laptops, Workstations and Servers
Continuous Vulnerability Assessment and Remediation
Malware Defences
Application Software Security
Wireless Access Control
Data Recovery Capability
Security Skills Assessment and Appropriate Training to Fill Gaps
Secure Configurations for Network Devices such as Firewalls, Routers and Switches
Limitation and Control of Network Ports, Protocols and Services
Controlled Use of Administrative Privileges
Boundary Defence
Maintenance, Monitoring and Analysis of Audit Logs
Control Access Based on the Need to Know
Account Monitoring and Control
Data Protection
Incident Response and Management
Secure Network Engineering
Penetration Tests and Red Team Exercises

complete compliance solution

Want to explore?
Start your free trial.

Sign up for your free trial today and get hands on with all the compliance features that ISMS.online has to offer

Find out more