FOUNDATIONAL
Controls Deployed?
T1189 - DBC
T1190 - EPA
T1133 - ERS
T1566 - PHI
T1195 - SCC
T1199 - TR
T1078 - VA
Use Web Application Firewall
Y
N
?
Security Logging and Monitoring Controls
Y
N
?
Vulnerability Scanning
Y
N
?
Email Authentication Protocols
Y
N
?
Monitoring of Social Media and other Platforms
Y
N
?
Software and Firmware Security Standards
Y
N
?
Web Filtering Controls
Y
N
?
Browser Extensions
Y
N
?
Anti-Virus and Anti-Malware Software
Y
N
?
Apply Patches and Updates
Y
N
?
Network Segmentation in the DMZ
Y
N
?
Security Awareness
Y
N
?
Use Security Software on Mobile Devices
Y
N
?
Enabling Host-Based Firewalls
Y
N
?
Implementing DNS Security
Y
N
?
2FA
Y
N
?
Secure Remote Access
Y
N
?
Network Security Controls (Firewalls/VPNS/Proxy servers)
Y
N
?
Anti-Phishing Software
Y
N
?
Spam Filters/Email Content Filtering
Y
N
?
Conduct Vendor Risk Assessments
Y
N
?
Secure Communications/Secure Protocols/Secure File Transfer Protocols
Y
N
?
Use Encryption Solution
Y
N
?
Implement Security Policies
Y
N
?
Conduct Regular Security Assessments
Y
N
?
Phishing Incident Response Plan
Y
N
?
Print
Clear Form
Should be Empty: