SFIA View: Cybersecurity resilience Beta
Cybersecurity resilience
Security operations SCAD
(modified)
Manages and administers security measures, using tools and intelligence to protect assets, ensuring compliance and operational integrity.
Identity and access management IAMT
(new)
Manages identity verification and access permissions within organisational systems and environments.
Continuity management COPL
(unchanged)
Developing, implementing and testing a business continuity framework.
Incident management USUP
(modified)
Coordinating responses to a diverse range of incidents to minimise negative impacts and quickly restore services.
Problem management PBMG
(modified)
Managing the lifecycle of all problems that have occurred or could occur in delivering a service.
Change control CHMG
(unchanged)
Assessing risks associated with proposed changes and ensuring changes to products, services or systems are controlled and coordinated.
Asset management ASMG
(modified)
Managing the full lifecycle of assets from acquisition, operation, maintenance to disposal.
Vulnerability assessment VUAS
(unchanged)
Identifying and classifying security vulnerabilities in networks, systems and applications and mitigating or eliminating their impact.
Digital forensics DGFS
(unchanged)
Recovering and investigating material found in digital devices.
Cybercrime investigation CRIM
(new)
Investigates cybercrimes, collects evidence, determines incident impacts and collaborates with legal teams to protect digital assets.
Offensive cyber operations OCOP
(new)
Plans, executes and manages offensive cybersecurity operations, including target selection, electronic target folders and post-operation analysis.