Resilient Cybersecurity: Reconstruct your defense strategy in an evolving cyber world

Dunkerley, Mark

  • 出版商: Packt Publishing
  • 出版日期: 2024-09-27
  • 售價: $2,050
  • 貴賓價: 9.5$1,948
  • 語言: 英文
  • 頁數: 752
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 1835462510
  • ISBN-13: 9781835462515
  • 相關分類: 資訊安全
  • 海外代購書籍(需單獨結帳)

相關主題

商品描述

Build a robust cybersecurity program that adapts to the constantly evolving threat landscape

Key Features:

- Gain a deep understanding of the current state of cybersecurity, including insights into the latest threats such as Ransomware and AI

- Lay the foundation of your cybersecurity program with a comprehensive approach allowing for continuous maturity

- Equip yourself and your organizations with the knowledge and strategies to build and manage effective cybersecurity strategies

Book Description:

Building a Comprehensive Cybersecurity Program addresses the current challenges and knowledge gaps in cybersecurity, empowering individuals and organizations to navigate the digital landscape securely and effectively. Readers will gain insights into the current state of the cybersecurity landscape, understanding the evolving threats and the challenges posed by skill shortages in the field.

This book emphasizes the importance of prioritizing well-being within the cybersecurity profession, addressing a concern often overlooked in the industry. You will construct a cybersecurity program that encompasses architecture, identity and access management, security operations, vulnerability management, vendor risk management, and cybersecurity awareness. It dives deep into managing Operational Technology (OT) and the Internet of Things (IoT), equipping readers with the knowledge and strategies to secure these critical areas.

You will also explore the critical components of governance, risk, and compliance (GRC) within cybersecurity programs, focusing on the oversight and management of these functions. This book provides practical insights, strategies, and knowledge to help organizations build and enhance their cybersecurity programs, ultimately safeguarding against evolving threats in today's digital landscape.

What You Will Learn:

- Build and define a cybersecurity program foundation

- Discover the importance of why an architecture program is needed within cybersecurity

- Learn the importance of Zero Trust Architecture

- Learn what modern identity is and how to achieve it

- Review of the importance of why a Governance program is needed

- Build a comprehensive user awareness, training, and testing program for your users

- Review what is involved in a mature Security Operations Center

- Gain a thorough understanding of everything involved with regulatory and compliance

Who this book is for:

This book is geared towards the top leaders within an organization, C-Level, CISO, and Directors who run the cybersecurity program as well as management, architects, engineers and analysts who help run a cybersecurity program. Basic knowledge of Cybersecurity and its concepts will be helpful.

Table of Contents

- Current State

- Setting the Foundations

- Building your Roadmap

- Solidifying your Strategy

- Cybersecurity Architecture

- Identity & Access Management

- Cybersecurity Operations

- Vulnerability Management

- Cybersecurity Awareness, Training & Testing

- Supplier Risk Management

- Proactive Services

- Operational Technology (OT) & the Internet of Things (IoT)

- Governance Oversight

- Managing Risk

- Regulatory & Compliance

- Some Final Thoughts

商品描述(中文翻譯)

建立一個能夠適應不斷演變的威脅環境的強健網路安全計畫

主要特點:
- 深入了解當前網路安全的狀態,包括對最新威脅(如勒索病毒和人工智慧)的見解
- 以全面的方法奠定網路安全計畫的基礎,實現持續成熟
- 裝備自己和您的組織,掌握建立和管理有效網路安全策略的知識和策略

書籍描述:
《建立全面的網路安全計畫》針對當前網路安全面臨的挑戰和知識缺口,賦予個人和組織安全有效地導航數位環境的能力。讀者將獲得對網路安全環境當前狀態的見解,了解不斷演變的威脅以及該領域技能短缺所帶來的挑戰。

本書強調在網路安全職業中優先考慮福祉的重要性,這是業界常常被忽視的問題。您將構建一個涵蓋架構、身份與存取管理、安全運營、漏洞管理、供應商風險管理和網路安全意識的網路安全計畫。書中深入探討了運營技術(OT)和物聯網(IoT)的管理,為讀者提供保護這些關鍵領域的知識和策略。

您還將探索網路安全計畫中治理、風險和合規(GRC)的關鍵組成部分,專注於這些功能的監督和管理。本書提供實用的見解、策略和知識,幫助組織建立和增強其網路安全計畫,最終保護組織免受當今數位環境中不斷演變的威脅。

您將學到的內容:
- 建立和定義網路安全計畫的基礎
- 發現為何在網路安全中需要架構計畫的重要性
- 學習零信任架構的重要性
- 了解現代身份的定義及如何實現
- 回顧為何需要治理計畫的重要性
- 為您的用戶建立全面的意識、訓練和測試計畫
- 回顧成熟的安全運營中心所涉及的內容
- 徹底了解與法規和合規相關的所有事項

本書適合對象:
本書針對組織內的高層領導、C-Level、CISO及負責網路安全計畫的主管,以及協助運行網路安全計畫的管理人員、架構師、工程師和分析師。具備基本的網路安全知識及其概念將會有所幫助。

目錄:
- 當前狀態
- 設定基礎
- 建立您的路線圖
- 鞏固您的策略
- 網路安全架構
- 身份與存取管理
- 網路安全運營
- 漏洞管理
- 網路安全意識、訓練與測試
- 供應商風險管理
- 主動服務
- 運營技術(OT)與物聯網(IoT)
- 治理監督
- 風險管理
- 法規與合規
- 最後的一些思考