Testing Every Component of a Layered Defense
The National Institutes of Standards and Technology (NIST) has the Cybersecurity Framework (CSF) that specifies five critical functions of security program: identify, protect, detect, respond, and recover. You will probably have need of systems that can at least protect and detect. You will probably hear about defense in depth or layered defense, but the reality is that no system or network is going to be able to rely exclusively on protection, which you can think about as prevention. You need to have visibility into what is happening on your systems and in your network. If there are weaknesses, you must know what they are. This means you will need to be able to identify these weaknesses or vulnerabilities ...
Get Security Strategies in Linux Platforms and Applications, 3rd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
