Cybersecurity
Defense in Depth
Definition
Defense in depth is a cybersecurity strategy that employs multiple layers of security controls to protect an organization's assets. The idea is that if one layer fails, another layer is there to stop the attack.
Why It Matters
No single security control is perfect. A layered approach provides resilience and reduces the likelihood of a single point of failure leading to a catastrophic breach.
Contextual Example
An organization protects its data with multiple layers: a perimeter firewall, an intrusion detection system, endpoint security on laptops, encryption on the database, and strict access controls. An attacker would need to bypass all of these layers to steal the data.
Common Misunderstandings
- The concept is borrowed from military strategy.
- It combines technical controls (like firewalls), administrative controls (like security policies), and physical controls (like locks on server room doors).