Book description
Despite the increase of high-profile hacks, record-breaking data leaks, and ransomware attacks, many organizations don't have the budget for an information security (InfoSec) program. If you're forced to protect yourself by improvising on the job, this pragmatic guide provides a security-101 handbook with steps, tools, processes, and ideas to help you drive maximum-security improvement at little or no cost.
Each chapter in this book provides step-by-step instructions for dealing with issues such as breaches and disasters, compliance, network infrastructure, password management, vulnerability scanning, penetration testing, and more. Network engineers, system administrators, and security professionals will learn how to use frameworks, tools, and techniques to build and improve their cybersecurity programs.
This book will help you:
- Plan and design incident response, disaster recovery, compliance, and physical security
- Learn and apply basic penetration testing concepts through purple teaming
- Conduct vulnerability management using automated processes and tools
- Use IDS, IPS, SOC, logging, and monitoring
- Bolster Microsoft and Unix systems, network infrastructure, and password management
- Use segmentation practices and designs to compartmentalize your network
- Reduce exploitable errors by developing code securely
Publisher resources
Table of contents
- Brief Table of Contents (Not Yet Final)
- 1. Creating a Security Program
-
2. Asset Management and Documentation
- Objectives of the Chapter
- Documentation
- Types of Assets and Establishing the Schema
- How Are You Storing Data?
- Understanding Your Inventory Schema: Incorporating Criticality and Risk
- Data Classification
- A University Advancement Example
- Asset Management Implementation Steps
- Asset Management Guidelines
- Conclusion
- 3. Policies
- 4. Standards and Procedures
- 5. User Education
- 6. Incident Response
- 7. Disaster Recovery
- 8. Industry Compliance Standards and Frameworks
- 9. Physical Security
- 10. Microsoft Windows Infrastructure
- 11. Unix Application Servers
- About the Authors
Product information
- Title: Defensive Security Handbook, 2nd Edition
- Author(s):
- Release date: July 2024
- Publisher(s): O'Reilly Media, Inc.
- ISBN: 9781098127244
You might also like
book
Defensive Security Handbook
Despite the increase of high-profile hacks, record-breaking data leaks, and ransomware attacks, many organizations don’t have …
book
Fundamentals of Information Systems Security, 4th Edition
Fundamentals of Information Systems Security, Fourth Edition provides a comprehensive overview of the essential concepts readers …
book
Cyber Security, 2nd Edition
Cyber security has never been more essential than it is today, it’s not a case of …
book
Information Security Handbook
Implement information security effectively as per your organization's needs. About This Book Learn to build your …