Chapter 2. Preparation Phase

This chapter covers the following topics:

Risk Analysis

Social Engineering

Security Intelligence

Creating a Computer Security Incident Response Team (CSIRT)

Building Strong Security Policies

Infrastructure Protection

Endpoint Security

Network Admission Control

While computer networks and sophisticated applications have allowed individuals to be more productive, the need to prepare for security threats has increased dramatically. Guarding against security threats includes preparing the infrastructure to protect not only against worms, viruses, and external denial of service (DoS) attacks, but also from internal threats such as theft of information and corporate espionage.

A six-step methodology on security ...

Get End-to-End Network Security: Defense-in-Depth now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.