***
Skip to content

Contexts

Cybersecurity Contexts Cloud Security Context OT/ICS Security Context SaaS Security Context Detect (Cybersecurity Monitoring) Logging & Telemetry SOC Monitoring & Alerting Govern (Cybersecurity Governance) Security Architecture & Standards Third-Party & Supply Chain Security Risk Identify (Cybersecurity Understanding) Attack Surface Management Vulnerability Management Protect (Cybersecurity Controls) Application & API Security Backup & Resilience Controls Data Protection Identity & Access Management (IAM) Network Security & Segmentation Privileged Access Management (PAM) Secure Configuration & Hardening Recover (Cybersecurity Recovery) Backup Restore & Integrity Validation Disaster Recovery (DR) & Business Continuity (BCP) Respond (Cybersecurity Incident Response) Containment & Eradication Investigation & Forensics
Cybersecurity Contexts Cloud Security Context OT/ICS Security Context SaaS Security Context Detect (Cybersecurity Monitoring) Logging & Telemetry SOC Monitoring & Alerting Govern (Cybersecurity Governance) Security Architecture & Standards Third-Party & Supply Chain Security Risk Identify (Cybersecurity Understanding) Attack Surface Management Vulnerability Management Protect (Cybersecurity Controls) Application & API Security Backup & Resilience Controls Data Protection Identity & Access Management (IAM) Network Security & Segmentation Privileged Access Management (PAM) Secure Configuration & Hardening Recover (Cybersecurity Recovery) Backup Restore & Integrity Validation Disaster Recovery (DR) & Business Continuity (BCP) Respond (Cybersecurity Incident Response) Containment & Eradication Investigation & Forensics
New to this diagram? Learn about the method: Use Case Tree · Use Case · Outcome

Contexts capture environment-specific considerations (cloud, SaaS, OT/ICS) so cybersecurity capabilities can be applied consistently without duplicating content across the tree.

Cybersecurity capabilities are often the same in principle, but differ in execution depending on context. These context pages highlight what changes and what must be considered when applying the capabilities in that environment.

Outcomes

  • Reduced duplication by centralizing context-specific considerations
  • More consistent security decisions across environments
  • Faster onboarding of teams by clarifying “how this works here”

Contexts