Definition

Cybersecurity

Cybersecurity is the set of technologies, processes and practices designed to protect networks, devices, programs and data against attacks, damage or unauthorized access.

Cybersecurity encompasses the protection of computer systems, networks and data against digital threats. Unlike information security (which includes information in any format), cybersecurity focuses on the digital environment. Frameworks such as NIST CSF, ISO 27001 and CIS Controls provide auditable structures for managing cyber risk.

Key aspects

Defense in depth

Strategy implementing multiple control layers (network, endpoint, application, data, user) so that failure of one layer does not compromise the entire system.

Incident management

Includes detection, response, containment, eradication and recovery capabilities for security incidents, with lessons learned to prevent recurrence.

Reference frameworks

Main frameworks are NIST Cybersecurity Framework, ISO 27001/27002, CIS Controls and COBIT. Each offers a systematic and auditable approach.

Frequently asked questions

Information security protects information in any format (digital, paper, verbal). Cybersecurity is a subset focused exclusively on protecting the digital environment against cyber threats.

ISO 27001 is the main certifiable standard. ISO 27002 provides implementation controls. They complement frameworks like NIST CSF. For continuity, ISO 22301 covers resilience against disruptive incidents.

Comparison

Ready to act on these findings?

Need an assessment in this area?

Request diagnosis→View research→

Loading content…

Frequently asked questions

Information security protects information in any format (digital, paper, verbal). Cybersecurity is a subset focused exclusively on protecting the digital environment against cyber threats.

Cybersecurity

Key aspects

Defense in depth

Incident management

Reference frameworks

Frequently asked questions

ISO 27001 vs ISO 42001: key differences between information security and AI management

ISO 9001 vs ISO 27001: quality management vs information security

How to implement ISO 27001 in your organization

How to prepare for an ISO audit

Shadow AI: artificial intelligence use without formal governance

Personal data breach: exposure assessment and privacy controls

Ready to act on these findings?

Cybersecurity

Key aspects

Defense in depth

Incident management

Reference frameworks

Frequently asked questions

ISO 27001 vs ISO 42001: key differences between information security and AI management

ISO 9001 vs ISO 27001: quality management vs information security

How to implement ISO 27001 in your organization

How to prepare for an ISO audit

Shadow AI: artificial intelligence use without formal governance

Personal data breach: exposure assessment and privacy controls

Ready to act on these findings?

Cybersecurity

Key aspects

Defense in depth

Incident management

Reference frameworks

Frequently asked questions

Related content

ISO 27001 vs ISO 42001: key differences between information security and AI management

ISO 9001 vs ISO 27001: quality management vs information security

How to implement ISO 27001 in your organization

How to prepare for an ISO audit

Shadow AI: artificial intelligence use without formal governance

Personal data breach: exposure assessment and privacy controls

Ready to act on these findings?

Cybersecurity

Key aspects

Defense in depth

Incident management

Reference frameworks

Frequently asked questions

Related content

ISO 27001 vs ISO 42001: key differences between information security and AI management

ISO 9001 vs ISO 27001: quality management vs information security

How to implement ISO 27001 in your organization

How to prepare for an ISO audit

Shadow AI: artificial intelligence use without formal governance

Personal data breach: exposure assessment and privacy controls

Ready to act on these findings?