CHAPTER 4

image

Implementing Enterprise Cybersecurity

This chapter describes how to implement an enterprise cybersecurity program. It discusses how to:

  • Organize personnel
  • Integrate cybersecurity into the IT system life cycle
  • Define security policies and scopes
  • Select security controls and technologies
  • Consider security effectiveness overall

The procedural and technological capabilities of the cybersecurity program deliver the security controls needed to mitigate risks, and can be organized into the 11 enterprise cybersecurity functional areas.

IT Organization

A first step in protecting an enterprise from cyberattacks is to organize people. Organization ...

Get Enterprise Cybersecurity: How to Build a Successful Cyberdefense Program Against Advanced Threats now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.