Table of Contents
Preface
Section 1: Incidence Response: The Heart of Security
Chapter 1: How Security Operations Are Changing
Why security is hard
Security operations
Cybersecurity, threats, and risk
Five types of cyber defense
Security incidents
Security solutions in search of a problem
The scope of security operations
Where security operations turn agile
Agile incident response
Agile security operations
Summary
Chapter 2: Incident Response – A Key Capability in Security Operations
Facing up to breaches
The incident response cycle
Knowing an incident – detection and analysis
Detection engineering
Repurposing
Analyzing threats
Branches and pivots – how incidents change
The kill chain model
Expanding the options for defense
Lateral movement ...
Get Agile Security Operations now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
