相關主題
商品描述
The second and third sections of this book focus on building strong security teams, and exercising prudence in cybersecurity. CISOs can foster cultures of respect through careful consideration of the biases inherent in the socio-linguistic frameworks shaping our workplace language and through the cultivation of cyber exceptionalism. CISOs should leave no stone unturned in seeking out people with unique abilities, skills, and experience, and encourage career planning and development, in order to build and retain a strong talent pool. The lessons of the breach of physical security at the US Capitol, the hack back trend, and CISO legal liability stemming from network and data breaches all reveal the importance of good judgment and the necessity of taking proactive stances on preventative measures.
This book will target security and IT engineers, administrators and developers, CIOs, CTOs, CISOs, and CFOs. Risk personnel, CROs, IT, security auditors and security researchers will also find this book useful.
商品描述(中文翻譯)
本書的第一部分探討了首席資訊安全官(CISO)領導力的演變,最成熟的CISO結合了強大的商業和技術領導技能。當CISO擁有對尖端安全技術的深入理解,以應對企業幾乎普遍依賴雲端、互聯網、混合網絡和第三方技術所帶來的風險時,他們能夠增加顯著的價值。本書展示了在我們這個充滿網絡威脅的新世界中,CISO已開始顯示其市場價值。華爾街更有可能以更高的股票估值來獎勵擁有良好網絡安全紀錄的公司。為了確保安全始終是商業決策中的首要考量,CISO應該在公司董事會中佔有一席之地,並且應該從頭到尾參與企業技術採用的過程。
本書的第二和第三部分專注於建立強大的安全團隊,以及在網絡安全中謹慎行事。CISO可以通過仔細考慮塑造我們工作場所語言的社會語言框架中固有的偏見,並通過培養網絡卓越主義來促進尊重的文化。CISO應該不遺餘力地尋找擁有獨特能力、技能和經驗的人,並鼓勵職業規劃和發展,以建立和保留強大的人才庫。美國國會大廈的實體安全漏洞、反駭客趨勢以及因網絡和數據洩露而產生的CISO法律責任的教訓,都揭示了良好判斷的重要性以及在預防措施上採取主動立場的必要性。
本書的目標讀者包括安全和IT工程師、管理員和開發人員、首席資訊官(CIO)、首席技術官(CTO)、首席資訊安全官(CISO)和首席財務官(CFO)。風險人員、首席風險官(CRO)、IT、安全審計員和安全研究人員也會發現本書的實用性。
作者簡介
Raj Badhwar has 25+ years of experience within the Cybersecurity and IT industry. He is currently the CISO for Voya Financial, and has previously held senior Security and IT leadership roles at AIG, BAE Systems Inc., Bank of America, Time Warner Cable, AOL Time Warner, and Sprint. Raj is a currently a director and secretary of the NTSC (National Technology Security Coalition) board. He is currently a member of the Pace University, Rutgers University and Ithaca College cybersecurity advisory boards. He is currently on the customer advisory board for Venafi, and CISO advisory council for Infosys.
Raj is a certified information systems security professional (CISSP), a certified ethical hacker (CEH), a FINRA licensed securities professional (Series 99), among some other technical certifications. He has co-authored 14 security patents and has written and presented in the areas of advanced encryption, post-quantum cryptography, zero trust networks, cloud security patterns, and secure remote work paradigms. Raj is the author of The CISO's Next Frontier: AI, Post-Quantum Cryptography and Advanced Security Paradigms. He has also been interviewed as a cybersecurity subject matter expert by WSJ. Raj is proficient in three languages, and conversant in another three languages.
Raj graduated from George Washington University (GWU) with a MS in Information Systems Technology and also holds a BS in Electrical and Electronics Engineering from Karnatak University. He is an alumnus of St Francis College, Lucknow.
作者簡介(中文翻譯)
Raj Badhwar 在網路安全和資訊科技產業擁有超過 25 年的經驗。他目前是 Voya Financial 的首席資訊安全官 (CISO),並曾在 AIG、BAE Systems Inc.、美國銀行、時代華納有線電視、AOL 時代華納和 Sprint 擔任高級安全和資訊科技領導職位。Raj 目前是國家科技安全聯盟 (NTSC) 董事會的董事和秘書。他同時也是 Pace University、Rutgers University 和 Ithaca College 的網路安全諮詢委員會成員。他目前在 Venafi 的客戶諮詢委員會和 Infosys 的 CISO 諮詢委員會中任職。
Raj 是認證資訊系統安全專業人員 (CISSP)、認證道德駭客 (CEH) 和 FINRA 註冊的證券專業人員 (Series 99),並擁有其他一些技術認證。他共同擁有 14 項安全專利,並在高級加密、後量子密碼學、零信任網路、雲安全模式和安全遠端工作範式等領域撰寫和發表過文章。Raj 是《CISO 的下一個前沿:人工智慧、後量子密碼學和高級安全範式》的作者。他也曾被《華爾街日報》採訪,作為網路安全主題專家。Raj 精通三種語言,並能使用另外三種語言進行交流。
Raj 畢業於喬治華盛頓大學 (GWU),獲得資訊系統技術碩士學位,並擁有卡納塔克大學的電氣與電子工程學士學位。他是盧克瑙聖方濟各學院的校友。
