GC Cyber Security Event Management Glossary
Revision as of 08:34, 14 April 2021 by Greggory.elton (talk | contribs) (Created page with " <div class="center"> {| width="1000" class="FCK__ShowTableBorders" style="border: 2px solid rgb(110, 110, 110);" |- ! width="16%" style="background: rgb(248, 224, 224); colo...")
| Overview | Documentation | Tools, Templates, and Reference Materials | CCCS Products | Contact Information | Glossary |
|---|
Glossary
Below you will find a glossary of terms used in the GC Cyber Security Event Management Plan (GC CSEMP). All terms below are defined in the context of the GC CSEMP.
File:EMP.png
250px
| Term | Definition |
|---|---|
| Compromise | The unauthorized access to, disclosure, modification, use, interruption, removal, or destruction of information or assets, causing a loss of confidentiality, integrity, availability and/or value. |
| Cyber Security Event | Indication that a cyber vulnerability may exist, that a cyber threat may be planned or that a cyber security incident may have occurred, requiring analysis and a risk management decision to determine an appropriate course of action (Note: Individual day-to-day events, such as those collected by a SIEM, are not considered in this definition).
|
| Cyber Security Incident | Any cyber security event (or collection of security events) or omission that results in the compromise of a GC IT system.
|
| Cyber Threat | Any potential event or act, deliberate or accidental, that could result in the compromise of a GC IT system. |
| Cyber Vulnerability | Any factor that could increase an IT system’s susceptibility to compromise. |
Acronyms and Abbreviations
Below is a list of acronyms and abbreviations that are commonly used in the GC CSEMP.
| ADM | Assistant Deputy Minister |
| BCP | Business Continuity Plan |
| CCIRC | Canadian Cyber Incident Response Centre |
| CCNSS | Canadian Committee on National Security Systems |
| CIO | Chief Information Officer |
| CIOB | Chief Information Officer Branch |
| CIOC | Chief Information Officer Committee |
| Comms | Communications |
| CSE | Communications Security Establishment |
| CSEMP | Cyber Security Event Management Plan |
| CSEMT | Cyber Security Event Management Team |
| CSIS | Canadian Security Intelligence Service |
| CTEC | Cyber Threat and Evaluation Centre |
| DG | Director General |
| DND/CAF | Department of National Defence / Canadian Armed Forces |
| DR | Disaster Recovery |
| DSO | Departmental Security Officer |
| EEMT | Executive Event Management Team |
| ERC | Event Response Committee |
| FERP | Federal Emergency Response Plan |
| FIPC | Federal Information Protection Centre |
| GC | Government of Canada |
| GC-CIRT | Government of Canada Computer Incident Response Team |
| GOC | Government Operations Centre |
| IT | Information Technology |
| ITSIRT | Information Technology Security Incident Recovery Team |
| ITSec | Information Technology Security |
| LSA | Lead Security Agency |
| MITS | Management of Information Technology Security |
| NSS | National Security Systems |
| PCO | Privy Council Office |
| PGS | Policy on Government Security |
| PS | Public Safety |
| RCMP | Royal Canadian Mounted Police |
| RFA | Request for Action |
| SC | Strategic Communications |
| SCMA | Strategic Communications and Ministerial Affairs |
| SIEM | Security information and event management |
| SOC | Security Operations Centre |
| SOP | Standard Operating Procedure |
| SSC | Shared Services Canada |
| TBS | Treasury Board of Canada Secretariat |
| WG | Working Group |