Cybersecurity threat mitigation refers to policies and processes put in place by companies to help prevent security incidents and data breaches as well as limit the extent of damage when security attacks do happen.

Threat mitigation in cybersecurity can be broken down into three components, or layers of mitigation:

  • Threat prevention: Best practices and policies that protect corporate applications and data from being threatened by threat actors
  • Threat identification: Security tools and management to identify active security threats
  • Threat remedy: Strategies and tools to reduce the impact of active security threats that have gotten past corporate security defenses and infiltrated the network by isolating or containing the threat