Compliance Dictionary | Unified Compliance Framework

Type	Definition	Sources
Noun	A potential cyber attack, which may be assigned a probability of occurrence that can be used for cyber risk assessment. (used 136 times in citations and controls)	http://cybersecurityforum.com/cybersecurity-faq/what-is-cyber-threat.html
Noun	An internal or external circumstance, event, action, occurrence, or person with the potential to exploit technology-based vulnerabilities and to adversely affect (create adverse consequences for) organizational operations, organizational assets (including information and information systems), individuals, other organizations, or society. (used 2 times in citations and controls)	FFIEC IT Examination Handbook
Noun	Any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. (used 5 times in citations and controls)	https://csrc.nist.gov/glossary/term/Cyber-Threat
Noun	Any circumstance or event with the potential to harm systems or information. (used 7 times in citations and controls)	Australian Government Information Security Manual 2021

Loading...

Displaying Controls in which this term is tagged – Show all Controls containing this term regardless of tagging

Displaying Controls containing this term – Show only Controls in which this term is tagged

Loading...

ID	Control
{{ control.id }}	{{ control.name }}
None

Displaying Citations in which this term is tagged – Show all Citations containing this term regardless of tagging

Loading...

AD ID	Authority Document	CT ID	Reference	Guidance	CC ID
{{ citation.authority_document.id }}	{{ citation.authority_document.common_name }}	{{ citation.id }}	{{ citation.reference }}	{{ citation.guidance_as_tagged \|\| citation.guidance }}	{{ citation.control.id }} None
None

cyber threat