Cybersecurity Tabletop Exercises: From Planning to Execution

Lelewski, Robert, Hollenberger, John

Cybersecurity Tabletop Exercises: From Planning to Execution
  • 出版商: No Starch Press
  • 出版日期: 2024-10-29
  • 售價: $2,160
  • 貴賓價: 9.5$2,052
  • 語言: 英文
  • 頁數: 200
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 1718503822
  • ISBN-13: 9781718503823
  • 相關分類: 資訊安全

    • 立即出貨 (庫存 < 3)

相關主題

商品描述

The complete start-to-finish guide for planning and delivering successful cybersecurity tabletop exercises.

Cybersecurity Tabletop Exercises, written by veteran security consultants Robert Lelewski and John Hollenberger, is an essential resource for cybersecurity professionals and anyone tasked with enhancing their organization's incident response capabilities. This comprehensive guide to tabletop exercise planning and delivery offers practical insights, step-by-step instructions, and real-world examples to improve your team's ability to prevent and respond to cyberattacks.

The book is divided into two main parts. In Part I: The Tabletop Exercise Process, you'll learn:

  • Why you should perform tabletop exercises and what their organizational benefits are
  • Effective planning and logistics tips, including how to gain executive sponsor support
  • How to develop realistic scenarios, injects, and storyboards
  • Facilitation techniques to ensure active participant engagement
  • Evaluation methods and follow-up activities


The example scenarios in Part II include:

 

  • Technical tabletops covering phishing campaigns, ransomware attacks, and zero-day vulnerabilities
  • Executive-level exercises that focus on high-impact incidents
  • Cross-functional cases such as physical security breaches, social media compromises, and insider threats


With examples tailored for various roles, you'll discover how to transform tabletop exercises from a mere compliance requirement into a powerful strategic preparedness tool. Whether you're new to tabletop exercises or an experienced practitioner, this book provides proven insights to strengthen your organization's cyber incident response capabilities and overall security posture.

 

商品描述(中文翻譯)

完整的從頭到尾規劃和執行成功的網路安全桌上演練指南。

《網路安全桌上演練》,由資深安全顧問 Robert Lelewski 和 John Hollenberger 撰寫,是網路安全專業人士及任何負責提升其組織事件回應能力的人的重要資源。這本全面的桌上演練規劃與執行指南提供了實用的見解、逐步的指導和真實的案例,以提升您的團隊預防和應對網路攻擊的能力。

本書分為兩個主要部分。在第一部分:桌上演練過程中,您將學到:

- 為什麼您應該進行桌上演練及其對組織的好處
- 有效的規劃和後勤提示,包括如何獲得高層贊助支持
- 如何開發現實的情境、注入內容和故事板
- 確保參與者積極參與的引導技巧
- 評估方法和後續活動

第二部分的範例情境包括:

- 涉及釣魚攻擊、勒索病毒攻擊和零日漏洞的技術桌上演練
- 專注於高影響事件的高層演練
- 跨功能案例,如實體安全漏洞、社交媒體妥協和內部威脅

透過針對不同角色量身定制的範例,您將發現如何將桌上演練從單純的合規要求轉變為強大的戰略準備工具。無論您是桌上演練的新手還是經驗豐富的從業者,本書提供的經驗見解將加強您組織的網路事件回應能力和整體安全態勢。

作者簡介

Robert Lelewski has more than 20 years of experience in IT, cybersecurity, incident response, and risk management. He is the VP of cybersecurity strategy at Zurich Insurance's Global Ventures and holds numerous industry certifications, including CISA, CISM, CRISC, CIPM, and CDPSE.

John Hollenberger is a seasoned cybersecurity consultant with over 16 years of experience in web and host-based vulnerability assessments, incident response, digital forensics, and data loss prevention. He is a senior security consultant of proactive services at Fortinet, with certifications that include CISSP, GCIH, GWAPT, and Security+.

作者簡介(中文翻譯)

羅伯特·萊勒斯基(Robert Lelewski)在資訊科技、網路安全、事件回應和風險管理方面擁有超過20年的經驗。他是蘇黎世保險(Zurich Insurance)全球風險投資部的網路安全策略副總裁,並持有多項行業認證,包括CISA、CISM、CRISC、CIPM和CDPSE。

約翰·霍倫伯格(John Hollenberger)是一位資深的網路安全顧問,擁有超過16年的經驗,專注於網頁和主機的漏洞評估、事件回應、數位取證和資料遺失防護。他是Fortinet主動服務的高級安全顧問,持有的認證包括CISSP、GCIH、GWAPT和Security+。

類似商品