aid: defense-in-depth
name: Defense in Depth
url: >-
  https://raw.githubusercontent.com/api-evangelist/defense-in-depth/refs/heads/main/apis.yml
description: >-
  Defense in Depth is a layered cybersecurity strategy that uses multiple,
  overlapping security controls so that if one control fails, others continue
  to protect systems, data, and users. The approach spans physical, network,
  endpoint, application, identity, and data layers, and is widely referenced
  in NIST, CISA, NSA, and DoD security guidance. This topic indexes APIs and
  resources that help organizations design, implement, and verify defense in
  depth controls.
kind: topic
image: https://kinlane-productions.s3.amazonaws.com/apis-json/apis-json-logo.jpg
specificationVersion: '0.19'
tags:
  - Cybersecurity
  - Defense in Depth
  - Layered Security
  - Information Security
  - Network Security
  - Endpoint Security
  - Identity
  - Zero Trust
  - NIST
  - Risk Management
created: '2025-01-01'
modified: '2026-04-28'
apis: []
common:
  - type: Reference
    url: https://www.cisa.gov/topics/cybersecurity-best-practices
    name: CISA Cybersecurity Best Practices
  - type: Reference
    url: https://csrc.nist.gov/glossary/term/defense_in_depth
    name: NIST Glossary - Defense in Depth
  - type: Reference
    url: https://www.nsa.gov/Cybersecurity/
    name: NSA Cybersecurity
  - type: Reference
    url: https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final
    name: NIST SP 800-53 Rev. 5
  - type: Reference
    url: https://www.nist.gov/cyberframework
    name: NIST Cybersecurity Framework
maintainers:
  - FN: Kin Lane
    email: kin@apievangelist.com