Cybersecurity event

Definitions

A cybersecurity event is

“

[a] cybersecurity change that may have an impact on organizational operations (including mission, capabilities, or reputation).[1]

”

“

an identified occurrence of a system, service, or network state, indicating a possible breach of information security, failure of controls, or a previously unknown situation that may be security relevant.[2]

”

“

any act or attempt, successful or unsuccessful, to gain unauthorized access to, disrupt or misuse an Information System or information stored on such Information System.[3]

”

References

1. Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1, App. B, at 45.
2. ISO/IEC 27035-2.
3. Cybersecurity Requirements for Financial Services Companies, at 2.