商品描述
This book shows you how military counter-intelligence principles and objectives are applied. It provides you with valuable advice and guidance to help your business understand threat vectors and the measures needed to reduce the risks and impacts to your organization. You will know how business-critical assets are compromised: cyberattack, data breach, system outage, pandemic, natural disaster, and many more.
Rather than being compliance-concentric, this book focuses on how your business can identify the assets that are most valuable to your organization and the threat vectors associated with these assets. You will learn how to apply appropriate mitigation controls to reduce the risks within suitable tolerances.
You will gain a comprehensive understanding of the value that effective protective security provides and how to develop an effective strategy for your type of business.
What You Will Learn
- Take a deep dive into legal and regulatory perspectives and how an effective protective security strategy can help fulfill these ever-changing requirements
- Know where compliance fits into a company-wide protective security strategy
- Secure your digital footprint
- Build effective 5 D network architectures: Defend, detect, delay, disrupt, deter
- Secure manufacturing environments to balance a minimal impact on productivity
- Securing your supply chains and the measures needed to ensure that risks are minimized
Who This Book Is For
Business owners, C-suite, information security practitioners, CISOs, cybersecurity practitioners, risk managers, IT operations managers, IT auditors, and military enthusiasts
商品描述(中文翻譯)
這本書展示了軍事反情報原則和目標的應用。它為您提供了寶貴的建議和指導,幫助您的企業了解威脅向量以及減少對組織風險和影響所需的措施。您將了解商業關鍵資產是如何受到威脅的:網路攻擊、數據洩露、系統故障、疫情、自然災害等等。
這本書不僅僅專注於合規性,而是著重於您的企業如何識別對組織最有價值的資產及其相關的威脅向量。您將學習如何應用適當的緩解控制措施,以在合適的容忍範圍內降低風險。
您將全面了解有效的保護安全所提供的價值,以及如何為您的業務類型制定有效的策略。
您將學到什麼
- 深入探討法律和監管的觀點,以及有效的保護安全策略如何幫助滿足這些不斷變化的要求
- 知道合規性在公司整體保護安全策略中的位置
- 保護您的數位足跡
- 建立有效的5D網路架構:防禦、檢測、延遲、干擾、威懾
- 確保製造環境的安全,以平衡對生產力的最小影響
- 確保您的供應鏈安全及確保風險最小化所需的措施
本書適合誰閱讀
商業擁有者、高層管理人員、資訊安全從業者、CISO、網路安全從業者、風險管理者、IT運營經理、IT審計員以及軍事愛好者
作者簡介
Jim (James) Seaman has been dedicated to the pursuit of security for his entire adult life. He served 22 years in the RAF Police, covering a number of specialist areas (physical security, aviation security, information security management, IT security management, cyber security management, security investigations, intelligence operations, incident response and disaster recovery), before successfully transitioning his skills to corporate environments (financial services, banking, retail, manufacturing, ecommerce, marketing, etc.) to help businesses enhance their cyber/InfoSec defensive measures working with various industry security standards.
作者簡介(中文翻譯)
吉姆(詹姆斯)·西曼 在他的整個成人生活中一直致力於安全的追求。他在英國皇家空軍警察服役22年,涵蓋多個專業領域(實體安全、航空安全、資訊安全管理、IT安全管理、網路安全管理、安全調查、情報行動、事件響應和災難恢復),之後成功地將他的技能轉移到企業環境中(金融服務、銀行、零售、製造、電子商務、行銷等),幫助企業增強其網路/資訊安全防禦措施,並與各種行業安全標準合作。
