A combination of mutually-reinforcing security controls (i.e., safeguards and countermeasures) implemented by technical means (i.e., functionality in hardware, software, and firmware), physical means (i.e., physical devices and protective measures), and procedural means (i.e., procedures performed by individuals).
NIST SP 800-53 Rev. 4 under Security Capability
NIST SP 800-53A Rev. 4 under Security Capability
See Capability, Security.
NISTIR 8011 Vol. 1 under Capability
NISTIR 8011 Vol. 1 under Security Capability
A set of mutually reinforcing security controls implemented by technical, physical, and procedural means. Such controls are typically selected to achieve a common information security-related purpose.
NISTIR 8011 Vol. 1