Cloud Auditing Best Practices: Perform Security and IT Audits across AWS, Azure, and GCP by building effective cloud auditing plans (Paperback)
暫譯: 雲端審計最佳實踐:透過建立有效的雲端審計計劃,在 AWS、Azure 和 GCP 上執行安全性與 IT 審計 (平裝本)

Cambric, Shinesa, Ratemo, Michael

Cloud Auditing Best Practices: Perform Security and IT Audits across AWS, Azure, and GCP by building effective cloud auditing plans (Paperback)
  • 出版商: Packt Publishing
  • 出版日期: 2023-01-13
  • 售價: $1,880
  • 貴賓價: 9.5$1,786
  • 語言: 英文
  • 頁數: 268
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 1803243775
  • ISBN-13: 9781803243771
  • 相關分類: Amazon Web ServicesMicrosoft Azure資訊安全

    • 海外代購書籍(需單獨結帳)

買這商品的人也買了...

商品描述

Ensure compliance across the top cloud players by diving into AWS, Azure, and GCP cloud auditing to minimize security risks

Key Features

- Leverage best practices and emerging technologies to effectively audit a cloud environment
- Get better at auditing and unlock career opportunities in cloud audits and compliance
- Explore multiple assessments of various features in a cloud environment to see how it's done

Book Description

As more and more companies are moving to cloud and multi-cloud environments, being able to assess the compliance of these environments properly is becoming more important. But in this fast-moving domain, getting the most up-to-date information is a challenge―so where do you turn?

Cloud Auditing Best Practices has all the information you'll need. With an explanation of the fundamental concepts and hands-on walk-throughs of the three big cloud players, this book will get you up to speed with cloud auditing before you know it.

After a quick introduction to cloud architecture and an understanding of the importance of performing cloud control assessments, you'll quickly get to grips with navigating AWS, Azure, and GCP cloud environments. As you explore the vital role an IT auditor plays in any company's network, you'll learn how to successfully build cloud IT auditing programs, including using standard tools such as Terraform, Azure Automation, AWS Policy Sentry, and many more.

You'll also get plenty of tips and tricks for preparing an effective and advanced audit and understanding how to monitor and assess cloud environments using standard tools.

By the end of this book, you will be able to confidently apply and assess security controls for AWS, Azure, and GCP, allowing you to independently and effectively confirm compliance in the cloud.

What you will learn

- Understand the cloud shared responsibility and role of an IT auditor
- Explore change management and integrate it with DevSecOps processes
- Understand the value of performing cloud control assessments
- Learn tips and tricks to perform an advanced and effective auditing program
- Enhance visibility by monitoring and assessing cloud environments
- Examine IAM, network, infrastructure, and logging controls
- Use policy and compliance automation with tools such as Terraform

Who this book is for

This book is for IT auditors looking to learn more about assessing cloud environments for compliance, as well as those looking for practical tips on how to audit them and what security controls are available to map to IT general computing controls. Other IT professionals whose job includes assessing compliance, such as DevSecOps teams, identity, and access management analysts, cloud engineers, and cloud security architects, will also find plenty of useful information in this book. Before you get started, you'll need a basic understanding of IT systems and a solid grasp of cybersecurity basics.

商品描述(中文翻譯)

確保在主要雲端服務提供商中遵循合規性,深入了解 AWS、Azure 和 GCP 的雲端審計,以最小化安全風險

主要特點

- 利用最佳實踐和新興技術有效地審計雲端環境
- 提升審計能力,開啟雲端審計和合規性方面的職業機會
- 探索雲端環境中各種功能的多重評估,了解其運作方式

書籍描述

隨著越來越多的公司轉向雲端和多雲環境,能夠正確評估這些環境的合規性變得越來越重要。然而,在這個快速變化的領域,獲取最新資訊是一項挑戰——那麼你該向哪裡尋求幫助?

《雲端審計最佳實踐》擁有你所需的所有資訊。本書將解釋基本概念並提供三大雲端服務提供商的實作步驟,讓你在不知不覺中掌握雲端審計的知識。

在快速介紹雲端架構及了解執行雲端控制評估的重要性後,你將迅速掌握如何導航 AWS、Azure 和 GCP 的雲端環境。當你探索 IT 審計師在任何公司網路中扮演的重要角色時,你將學會如何成功建立雲端 IT 審計計畫,包括使用 Terraform、Azure Automation、AWS Policy Sentry 等標準工具。

你還將獲得許多準備有效且高級審計的技巧,並了解如何使用標準工具監控和評估雲端環境。

在本書結束時,你將能夠自信地應用和評估 AWS、Azure 和 GCP 的安全控制,讓你能夠獨立且有效地確認雲端的合規性。

你將學到的內容

- 了解雲端共享責任及 IT 審計師的角色
- 探索變更管理並將其與 DevSecOps 流程整合
- 了解執行雲端控制評估的價值
- 學習執行高級且有效的審計計畫的技巧
- 通過監控和評估雲端環境來增強可見性
- 檢查 IAM、網路、基礎設施和日誌控制
- 使用 Terraform 等工具進行政策和合規性自動化

本書適合對象

本書適合希望了解如何評估雲端環境合規性的 IT 審計師,以及尋求實用技巧以進行審計和了解可映射到 IT 一般計算控制的安全控制的專業人士。其他職責包括評估合規性的 IT 專業人士,如 DevSecOps 團隊、身份和訪問管理分析師、雲端工程師和雲端安全架構師,也會在本書中找到許多有用的資訊。在開始之前,你需要對 IT 系統有基本了解,並對網路安全基礎知識有扎實的掌握。

目錄大綱

1. Cloud Architecture and Navigation
2. Effective Techniques for Preparing to Audit Cloud Environment
3. Identity and Access Management Controls
4. Network, Infrastructure, and Security Controls
5. Financial Resource and Change Management Controls
6. Tips and Techniques for Advanced Auditing
7. Tools for Monitoring and Assessing
8. Walk-Through – Assessing IAM Controls
9. Walk-Through – Assessing Policy Settings and Resource Controls
10. Walk-Through – Assessing Change Management, Logging, and Monitoring Policies

目錄大綱(中文翻譯)

1. Cloud Architecture and Navigation

2. Effective Techniques for Preparing to Audit Cloud Environment

3. Identity and Access Management Controls

4. Network, Infrastructure, and Security Controls

5. Financial Resource and Change Management Controls

6. Tips and Techniques for Advanced Auditing

7. Tools for Monitoring and Assessing

8. Walk-Through – Assessing IAM Controls

9. Walk-Through – Assessing Policy Settings and Resource Controls

10. Walk-Through – Assessing Change Management, Logging, and Monitoring Policies

類似商品

最後瀏覽商品 (14)