The idea of an asset in cyber security comes from accounting and finance. Put simply, an asset is something valuable that a business owns or controls.
Examples of assets in cyber security:
- Laptops, computers, printers, network infrastructure - these are often called "hardware assets".
- Finance software, word processing apps, design and marketing apps, industrial control software - these are often called "software assets".
- Data about customers, your order book, supply chain information - these are often called "data assets".
- Trade secrets, patents, R&D data - these are often called "intellectual property assets".
Listing your most important assets is often the first step when using a security framework, as it allows you to set the limits of what you're going to protect.
The Guide: Cyber Security Frameworks