A CISO Guide to Cyber Resilience: A how-to guide for every CISO to build a resilient security program
Baker, Debra
- 出版商: Packt Publishing
- 出版日期: 2024-04-30
- 售價: $2,350
- 貴賓價: 9.5 折 $2,233
- 語言: 英文
- 頁數: 238
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1835466923
- ISBN-13: 9781835466926
-
相關分類:
資訊安全
海外代購書籍(需單獨結帳)
相關主題
商品描述
Explore expert strategies to master cyber resilience as a CISO, ensuring your organization's security program stands strong against evolving threats
Key Features- Unlock expert insights into building robust cybersecurity programs
- Benefit from guidance tailored to CISOs and establish resilient security and compliance programs
- Stay ahead with the latest advancements in cyber defense and risk management including AI integration
- Purchase of the print or Kindle book includes a free PDF eBook
The rising number of cybersecurity attacks is a top concern for organizations across the globe. Amid the ever-evolving cybersecurity landscape, CISOs play a crucial role in fortifying organizational defenses and safeguarding sensitive data. Written by the CEO of TrustedCISO, with 30+ years of experience, A CISO Guide to Cyber Resilience will take you through some of the latest and most significant large-scale cyber-attacks and guide you on how to make your network cyber-resilient so your company can quickly recover from any attack.
You'll begin with an in-depth analysis of a ransomware attack targeting a fictional company, BigCo, understanding its impact and response strategies, and then delve into fundamental security policies and controls. As you progress, you'll find that every chapter provides actionable skills and insights suitable for various levels of expertise, from basic to intermediate. Toward the end, you'll explore advanced concepts such as zero-trust, managed detection and response, security baselines, data and asset classification, and the integration of artificial intelligence and cybersecurity.
By the end of this book, you'll be equipped with the knowledge and skills necessary to build, manage, and improve a resilient cybersecurity program, ensuring your organization remains protected against evolving threats.
What you will learn- Defend against cybersecurity attacks and expedite the recovery process
- Protect your network from ransomware and phishing
- Understand products required to lower cyber risk
- Establish and maintain vital offline backups for ransomware recovery
- Understand the importance of regular patching and vulnerability prioritization
- Set up security awareness training
- Create and integrate security policies into organizational processes
This book is for new CISOs, directors of cybersecurity, directors of information security, aspiring CISOs, and individuals who want to learn how to build a resilient cybersecurity program. A basic understanding of cybersecurity concepts is required.
Table of Contents- The Attack on BigCo
- Identity and Access Management
- Security Policies
- Security and Risk Management
- Secure Your Endpoints
- Data Safeguarding
- Security Awareness Culture
- Vulnerability Management
- Asset Inventory
- Data Protection
- Taking Your Endpoint Security to the Next Level
- Secure Configuration Baseline
- Classify Your Data and Assets
- Cyber Resilience in the Age of Artificial Intelligence (AI)
商品描述(中文翻譯)
探索專家策略,以成為一位 CISO,確保您的組織的安全計劃能夠抵禦不斷演變的威脅。主要特點包括:
- 獲取建立強大的網絡安全計劃的專家見解
- 從針對 CISO 的指導中受益,建立具有彈性的安全和合規計劃
- 保持與包括 AI 整合在內的最新的網絡防禦和風險管理進展
- 購買印刷版或 Kindle 版本的書籍將包含免費的 PDF 電子書
書籍描述:
隨著全球組織面臨的網絡安全攻擊數量不斷增加,這已成為一個頭等大事。在不斷變化的網絡安全環境中,CISO 在加強組織防禦和保護敏感數據方面發揮著關鍵作用。《CISO指南:網絡韌性》由 TrustedCISO 的首席執行官撰寫,擁有30多年的經驗,將帶領您了解一些最新和最重大的大規模網絡攻擊,並指導您如何使您的網絡具有韌性,以便您的公司能夠迅速從任何攻擊中恢復過來。
您將首先深入分析針對虛構公司 BigCo 的勒索軟體攻擊,了解其影響和應對策略,然後深入研究基本的安全政策和控制措施。隨著進展,您會發現每一章都提供了適用於不同專業水平的可行技能和見解,從基礎到中級。最後,您將探索零信任、管理檢測和響應、安全基線、數據和資產分類以及人工智能和網絡安全的整合等高級概念。
通過閱讀本書,您將獲得構建、管理和改進具有韌性的網絡安全計劃所需的知識和技能,確保您的組織能夠抵禦不斷演變的威脅。
您將學到:
- 防禦網絡安全攻擊並加快恢復過程
- 保護您的網絡免受勒索軟體和釣魚攻擊
- 了解降低網絡風險所需的產品
- 建立和維護重要的離線備份以進行勒索軟體恢復
- 了解定期打補丁和漏洞優先級的重要性
- 設置安全意識培訓
- 創建並將安全政策整合到組織流程中
本書適合新任 CISO、資訊安全總監、資訊安全主管、有志成為 CISO 的人士以及想要學習如何建立具有韌性的網絡安全計劃的個人。需要具備基本的網絡安全概念理解。
目錄:
1. BigCo 的攻擊
2. 身份和訪問管理
3. 安全政策
4. 安全和風險管理
5. 保護您的終端
6. 數據保護
7. 安全意識文化
8. 漏洞管理
9. 資產清單
10. 數據保護
11. 將您的終端安全提升到更高水平
12. 安全配置基線
13. 分類您的數據和資產
14. 人工智能時代的網絡韌性