9/11/23
Vulnerability vs threat vs risk
u These terms are frequently used together, but they do explain three separate components of cybersecurity. In short, we can see them as a spectrum: • First, a vulnerability exposes your organization to threats.
• A threat is a malicious or negative event that takes advantage of a vulnerability.
• Finally, the risk is the potential for loss and damage when the threat does occur.
5
What is a vulnerability?
u Vulnerabilities is a weakness, flaw or other shortcoming in a system (infrastructure, database or software), but it can also exist in a process, a set of controls, or simply just the way that something has been implemented or deployed.
6
3
Made with FlippingBook - Online catalogs