ABSTRACT
Ever since information technology (IT) made its way into the enterprise, there has been a need to deploy security controls to safeguard informational assets from attacks and adversaries. Since the use of computer systems back in the 1960s, information security has been a discipline focused on the security of informational assets or systems, regardless of its state. As a reference, the industry frameworks provide a general outline for organizations to enable effective information and cybersecurity capabilities. The term "kill chain" is a military concept describing an integrated, end-to-end, and systematic way to target and engage adversaries to create a desired effect, with the idea that breaking any one deficiency will ultimately interrupt the entire process. In 2011, computer scientists at Lockheed-Martin applied the kill chain concept to the realm of information and cybersecurity.
