IT Security Interviews Exposed: Secrets to Landing Your Next Information Security Job (Paperback)

Chris Butler, Russ Rogers, Mason Ferratt, Greg Miles, Ed Fuller, Chris Hurley, Rob Cameron, Brian Kirouac

  • 出版商: Wiley
  • 出版日期: 2007-09-01
  • 售價: $1,270
  • 貴賓價: 9.5$1,207
  • 語言: 英文
  • 頁數: 244
  • 裝訂: Paperback
  • ISBN: 0471779873
  • ISBN-13: 9780471779872
  • 相關分類: 職涯發展
  • 海外代購書籍(需單獨結帳)

買這商品的人也買了...

相關主題

商品描述

Description

  • Technology professionals seeking higher-paying security jobs need to know security fundamentals to land the job-and this book will help
  • Divided into two parts: how to get the job and a security crash course to prepare for the job interview
  • Security is one of today's fastest growing IT specialties, and this book will appeal to technology professionals looking to segue to a security-focused position
  • Discusses creating a resume, dealing with headhunters, interviewing, making a data stream flow, classifying security threats, building a lab, building a hacker's toolkit, and documenting work
  • The number of information security jobs is growing at an estimated rate of 14 percent a year, and is expected to reach 2.1 million jobs by 2008
 

Table of Contents

Acknowledgments.

Introduction.

Chapter 1: Finding, Interviewing for, and Getting the Job.

Qualifications.

Pursuing a Degree.

The Perfect Job.

Job Search.

Interviewing.

Money Talks.

Accepting or Rejecting the Offer.

Summary.

Nontechnical Interview Questions.

Chapter 2: Knowing Networks: Fundamentals.

Introduction.

Questions.

Recommended Reading.

Chapter 3: Knowing Security: Fundamentals.

Adjust Your Thinking.

Core Values.

Basic Concepts.

Managing Risk.

Data Classification and Labeling.

Ethics in Information Security.

Daily Security Responsibilities.

Summary.

Interview Q&A.

Recommended Reading.

Chapter 4: Understanding Regulations, Legislation, and Guidance.

Regulations, Legislation, and Guidance Defined.

Why Does an Employer Care?

Why Should You Care?

Government- and DoD-Specific Information.

Commercial Information Security.

Using This Information in the Interview.

Summary.

Interview Q&A.

Recommended Reading.

Chapter 5: Knowing Firewalls: Fundamentals.

Firewall Technologies.

Major Vendors.

Device Types.

Management.

Deployment Strategies.

Summary.

Interview Q&A.

Recommended Reading.

Chapter 6: Knowing Virtual Private Networks.

Goals and Assumptions.

The Cryptography of VPNs.

IP Security Review.

Implementing IPsec.

Alternatives to IPsec.

Summary.

Interview Q&A.

Recommended Reading.

Chapter 7: Knowing IDS/IPS/IDP.

Introduction.

Questions.

What Questions Do You Want to Ask Me?

Recommended Reading.

Chapter 8: Everything You Ever Wanted to Know about Wireless but Were Afraid They' Ask.

The Fundamentals.

Wireless Cards and Chipsets.

Wireless Drivers for Linux.

WLAN Detection (WarDriving).

Wireless Security.

Rogue Wireless Devices.

Summary.

Interview Q&A.

Recommended Reading.

Chapter 9: Finding Your Posture.

History of Information Security.

Modern Information Security.

Security Objectives.

Determining the Security Posture.

Prioritizing the Vulnerabilities.

Vulnerability Management.

Summary.

Interview Q&A.

Recommended Reading.

Chapter 10: Tools.

Enumeration, Port Scanning, and Banner Grabbing.

Wireless Enumeration.

Vulnerability Scanning.

Password Compliance Testing.

Network Sniffing.

Penetration Testing.

Learning.

Summary.

Interview Q&A.

Recommended Reading.

Additional Resources.

Index.

商品描述(中文翻譯)

描述

技術專業人士尋求高薪安全工作的人需要了解安全基礎知識才能獲得工作,而這本書將幫助他們。

分為兩部分:如何找到工作和準備工作面試的安全速成課程。

安全是當今增長最快的IT專業之一,這本書將吸引希望轉向以安全為重點的技術專業人士。

討論了創建簡歷、處理獵頭、面試、使數據流動、分類安全威脅、搭建實驗室、搭建黑客工具包和文檔工作等內容。

預計信息安全工作的數量每年以14%的速度增長,到2008年預計將達到210萬個工作。

目錄

致謝。

介紹。

第1章:尋找、面試和獲得工作。

資格。

追求學位。

完美的工作。

求職。

面試。

談錢。

接受或拒絕聘用。

總結。

非技術面試問題。

第2章:了解網絡:基礎知識。

介紹。

問題。

推薦閱讀。

第3章:了解安全:基礎知識。

調整思維。

核心價值觀。

基本概念。

風險管理。

數據分類和標記。

信息安全倫理。

日常安全職責。

總結。

面試問答。

推薦閱讀。

第4章:了解法規、法律和指導。

定義法規、法律和指導。

雇主為什麼關心?

你為什麼應該關心?

政府和國防部的特定信息。

商業信息安全。

在面試中使用這些信息。

總結。

面試問答。

推薦閱讀。

第5章:了解防火牆:基礎知識。

防火牆技術。

主要供應商。

設備類型。

管理。

部署策略。

總結。

面試問答。

推薦閱讀。

第6章:了解虛擬私有網絡。

目標和假設。

VPN的加密。

IP安全回顧。

實施IPsec。

IPsec的替代方案。

總結。

面試問答。

推薦閱讀。

第7章:了解入侵檢測系統/入侵防禦系統/入侵檢測和預防。

介紹。

問題。

你想問我什麼問題?

推薦閱讀。

第8章:關於無線網絡你想知道的一切,但害怕問的問題。

基礎知識。

無線網卡和芯片組。

Linux的無線驅動程序。

無線局域網檢測(WarDriving)。

無線安全。

偽造的無線設備。

總結。

面試問答。

推薦閱讀。

第9章:找到你的立場。

信息安全的歷史。

現代信息安全。