Back to Home

Core Areas of Cyber Security

Six core domains that shape practical security architecture and operations.

1 Network Security

Protecting networks from unauthorized access

  • Firewalls
  • VPN
  • Intrusion Detection Systems
2 Application Security

Protecting software from vulnerabilities

  • Preventing SQL injection
  • Preventing XSS
  • Secure API authentication
  • Input validation
  • Proper JWT validation
  • Keycloak token verification
  • Rate limiting in NestJS
3 Cloud Security

Protecting cloud infrastructure (AWS, Azure, GCP)

  • IAM policies
  • Security groups
  • Encrypted storage
  • Proper VM access control
4 Data Security

Protecting sensitive data

  • Encryption (AES, RSA)
  • Hashing passwords (bcrypt)
  • Tokenization
  • Database encryption
5 Identity and Access Management (IAM)

Controlling who can access what

  • Role-based access control (RBAC)
  • Multi-factor authentication
  • OAuth2 / OpenID Connect
  • Keycloak integration as part of IAM
6 Endpoint Security

Protecting user devices

  • Antivirus
  • Device monitoring
  • Patch management
Since you are using Azure VMs and Docker deployments, misconfigured ports alone can expose your entire infrastructure.