image
Chapter 4
Asset Management
 
All of the security automation components we have described thus far are based on understanding the state of individual entities that have some value to the organization. The National Institute of Standards and Technology (NIST) defines these entities as “assets,” and each could refer to any resource, whether a person, a device, a network, a real or virtual software component, a physical location, or even the organization itself. The asset is the foundation around which security automation is built, since each of the automation components is describing a state or a finding about “something.” Following are some example ...

Get Security Automation Essentials: Streamlined Enterprise Security Management & Monitoring with SCAP now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.