Compliance Dictionary | Unified Compliance Framework

Type	Definition	Sources
Role	This role focuses on maintaining the security posture of the system during real or simulated attacks; or evaluating operational network vulnerabilities and providing mitigation techniques. Any team involved in defending the system against attacks and maintaining the system's security posture or performing operational network vulnerability evaluations should be assigned to this role. (used 0 times in citations and controls)	Per ISO 704:2009 methodology
Role	The group responsible for defending an enterprise’s use of information systems by maintaining its security posture against a group of mock attackers (i.e., the Red Team). Typically the Blue Team and its supporters must defend against real or simulated attacks: - over a significant period of time, - in a representative operational context (e.g., as part of an operational exercise), and - according to rules established and monitored with the help of a neutral group refereeing the simulation or exercise (i.e., the White Team). (used 30 times in citations and controls)	Glossary of Key Information Security Terms, NISTIR 7298 Revision 2

Loading...

Displaying Controls in which this term is tagged – Show all Controls containing this term regardless of tagging

Displaying Controls containing this term – Show only Controls in which this term is tagged

Loading...

ID	Control
{{ control.id }}	{{ control.name }}
None

Displaying Citations in which this term is tagged – Show all Citations containing this term regardless of tagging

Loading...

AD ID	Authority Document	CT ID	Reference	Guidance	CC ID
{{ citation.authority_document.id }}	{{ citation.authority_document.common_name }}	{{ citation.id }}	{{ citation.reference }}	{{ citation.guidance_as_tagged \|\| citation.guidance }}	{{ citation.control.id }} None
None

Blue Team