Discussion: Risk Mitigation Control Essay

When it comes to risk guidance, risk mitigating controls argon the key to reducing threats to the web infrastructure. These mitigating controls plunder be found within standards, such as ISO/IEC 27001, and invoke measures to take in order to reduce risk to an organizations assets. It is important to understand what each of these controls are in regards to risk management as well as the types of assessments used in determining the fit methods in protecting the infrastructure of any web.An asset is any obvious or intangible economic resource that can be have or used to produce value. These range from hardware and software to personnel office assets. Threats may be man-made, accidental or an act of nature, which can bear potential harm to the network. Mitigating controls are put in place to significantly reduce either the chance or penalties of a threat.Types of controls, that an admin can implement, are login identifiers, system and entropy audits, firewalls, encryption, an d session timeouts. All of these controls help to prevent, defect, and correct the network from potential threats. Identifiers are simply authentication methods used to gain ingress to a network. Audits need to be completed to investigate the activities of personnel as well as identify the status of the overall network. Firewalls must be put in place to protect the network against unwanted users and bugs. encryption should be used to ensure all data traffic is protect from prying eyes or individuals scanning the network for information they can steal or abuse. Lastly, a policy implementing session timeouts must be enforced to hold all users liable for not properly lockup their computers when walking away from it.All of these controls ensure a greater guard not only for the network, but also for the information or data passing along its highways.Thank you for coming out, God bless. Goodnight.