---
type: "term"
title: "Control"
description: "A security measure implemented to mitigate threats, reduce vulnerabilities, or minimize the impact of security incidents."
resource: "tlctc:term:control"
tags:
  - "glossary"
---
# Control

A security measure implemented to mitigate threats, reduce vulnerabilities, or minimize the impact of security incidents. In the TLCTC framework, controls are organized using NIST CSF functions (Identify, Protect, Detect, Respond, Recover) and mapped to specific threat clusters. Controls are categorized as Local Controls (protecting specific systems) or Umbrella Controls (protecting groups of systems).