Cyber Security, Computer Security or IT Security is the protection of computer systems from theft and damage to hardware, software or information, as well as from interference or irregularities in the services they provide. Generally includes technical problems, such as network security, operating systems, data security and application source code. Apart from the technical side, strengthening security must also include a number of protocols or SOPs that must be carried out so as to avoid malpractice by the operator (Personnel), whether intentional or unintentional. The following are some of the Standards used for Cyber Security: NIST Cyber Security Framework, RFC 2196 (Site Security Handbook), ISO 270032 (Cyber Security).
According to NIST (The National Institute of Standards and Technology) the Cyber Security Framework is a set of optional standards, best practices and recommendations for improving world security at the organizational level. The aim of the CSF (Cybersecurity Framework) is to create a common language, accompanied by standards, and a set of objectives that can be easily applied to improve the security of the world. The CSF standard is entirely optional, there are no rules for organizations that do not want to follow the standards.