Information Security
Information security is defined as “protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction.”
- According to US law: Federal Information Security Modernization Act of 2014 (FISMA), 44 U.S.C § 3552
- aka infosec
- Information security and cybersecurity assurance is met by implementing security controls
Cybersecurity is the protection of computer systems and digital information resources from unauthorized access, attack, theft, or data damage.
- refers specifically to controls that protect against attacks on computer storage and processing systems