Initial commit - 611 cybersecurity skills across all subdomains

This commit is contained in:
mukul975
2026-02-25 10:47:44 +01:00
commit 22a7ab1462
1765 changed files with 280648 additions and 0 deletions
@@ -0,0 +1,12 @@
# Standards & References
## Primary Standards
- **NIST SP 800-53 MP-7**: Media Use - restricting removable media types and usage
- **PCI DSS 4.0 Req 3.4.2**: Restrict removable electronic media for cardholder data
- **CIS Control 10.4**: Configure device control to prevent removable media autorun
- **ISO 27001 A.8.3.1**: Management of removable media
## Supporting References
- **MDE Device Control**: https://learn.microsoft.com/en-us/defender-endpoint/device-control-overview
- **CrowdStrike Device Control**: Falcon Console documentation
- **GPO Removable Storage**: https://learn.microsoft.com/en-us/windows/client-management/mdm/policy-csp-remotemanagement
@@ -0,0 +1,17 @@
# Workflows
## Workflow 1: USB Device Control Deployment
```
[Audit current USB usage across fleet] → [Identify legitimate USB needs]
→ [Create approved device whitelist] → [Configure block policy with exceptions]
→ [Deploy in audit mode for 2 weeks] → [Review blocked events]
→ [Add missing legitimate devices] → [Switch to enforce mode]
→ [Communicate policy to users] → [Monitor and maintain]
```
## Workflow 2: USB Exception Request
```
[User requests USB access] → [Verify business justification]
→ [Issue approved encrypted USB device] → [Add device ID to whitelist]
→ [Deploy updated policy] → [Log exception with expiry date]
```