Infosec glossary entry

COA

COA:
Course Of Action

A Course of Action (COA) is a strategy or plan that outlines specific steps to be taken in response to a particular situation or incident. In the context of cybersecurity, COAs are developed to address security incidents, mitigate risks, and enhance overall security posture. By establishing clear COAs, organizations can improve their incident response capabilities and ensure that they are prepared to handle potential threats effectively.

[…] construct, which conveys specific measures to be taken to address threats whether they are corrective or preventative to address Exploit Targets, or responsive to counter or mitigate the potential impacts of Incidents.
https://docs.oasis-open.org/cti/stix/v1.2.1/stix-v1.2.1-part9-coa.pdf

Related entries

Share 0
Tweet 0
Share 0

By jean-christoph

October 5, 2024

threat hunting, threat intelligence
Leave a Reply

Your email address will not be published. Required fields are marked

{"email":"Email address invalid","url":"Website address invalid","required":"Required field missing"}

this might interest you as well

ethics, incident response, resilience, security strategy

Lessons from Sun Tzu’s “The Art of War” in Cybersecurity: Timeless Wisdom or Outdated Tactics?

awareness training, Psychologie, ransomware, security awareness

Ransomware Resilience Starts in the Mind: Overcoming Cognitive Biases and Decision-Making Errors in Cybersecurity

AI, NIST, OWASP, risk management, threat intelligence

AI Cyber Security 2025: Key Threats and Essential Strategies for Your Business