Chapter 4. Risk Metric Scenarios to Secure the Enterprise
This chapter covers the following topics:
Review Effectiveness of Existing Security Controls: This section explains why you should review the effectiveness of existing security controls to determine whether any new security controls should be deployed. It covers gap analysis, lessons learned, and after-action reports.
Reverse Engineer/Deconstruct Existing Solutions: This section covers using reverse engineering and deconstruction of existing solutions to obtain the same information that an attacker can obtain about your enterprise.
Creation, Collection, and Analysis of Metrics: This section discusses how to create, collect, and analyze metrics to help determine which security controls ...
Get CompTIA Advanced Security Practitioner (CASP) CAS-003 Cert Guide, Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
