Layers of preventive controls
In the introduction to Part 2, Controlling the Fay, of the book, we learned about a Defense-in-Depth (DiD) approach. This is a good mindset to adopt, and hence this methodology mentions a few layers where controls should be applied. A blue team should look into each of these layers to see which ones are applicable to it, and where its organization’s IT assets are located. We will review each of these layers, with some examples of preventive controls that should be considered. You can see an overview of the layers in the following diagram:
Figure 7.1 – Layers of controls
Next, we will review each of these layers and understand what a blue team should consider when defining controls for its organization.
Policy control
Policy management is required to ensure there is one single strategy and one consistent approach enforced across the organization. Hence, this is usually the first step that is taken before...