arvutikaitse

Arvutikaitse is the practice of protecting computer systems, networks, and data from unauthorized access, damage, or disruption. It combines technical controls, organizational processes, and user awareness to manage risk and ensure confidentiality, integrity, and availability of information and services.

The scope includes hardware and software security, network security, data protection, and governance of information systems.

Common threats include malware such as viruses and ransomware, phishing and social engineering, zero-day exploits, insider

Defensive measures emphasize defense-in-depth: up-to-date antivirus, firewalls, intrusion detection and prevention systems, encryption of data at

Security governance and practices include risk assessment, security policies, least-privilege access, separation of duties, change management,

Legal and organizational context includes compliance with data protection regulations (such as GDPR in Europe), industry

Education and awareness are important for individuals and organizations, including ongoing training, awareness campaigns, and drills