Zum Hauptinhalt springen
Dekorationsartikel gehören nicht zum Leistungsumfang.
Asset Attack Vectors
Building Effective Vulnerability Management Strategies to Protect Organizations
Taschenbuch von Brad Hibbert (u. a.)
Sprache: Englisch

48,14 €*

inkl. MwSt.

Versandkostenfrei per Post / DHL

Aktuell nicht verfügbar

Kategorien:
Beschreibung
Build an effective vulnerability management strategy to protect your organization¿s assets, applications, and data.
Today¿s network environments are dynamic, requiring multiple defenses to mitigate vulnerabilities and stop data breaches. In the modern enterprise, everything connected to the network is a target. Attack surfaces are rapidly expanding to include not only traditional servers and desktops, but also routers, printers, cameras, and other IOT devices. It doesn¿t matter whether an organization uses LAN, WAN, wireless, or even a modern PAN¿savvy criminals have more potential entry points than ever before. To stay ahead of these threats, IT and security leaders must be aware of exposures and understand their potential impact.

Asset Attack Vectors will help you build a vulnerability management program designed to work in the modern threat environment. Drawing on years of combined experience, the authors detail the latest techniques for threat analysis, risk measurement, and regulatory reporting. They also outline practical service level agreements (SLAs) for vulnerability management and patch management.

Vulnerability management needs to be more than a compliance check box; it should be the foundation of your organization¿s cybersecurity strategy. Read Asset Attack Vectors to get ahead of threats and protect your organization with an effective asset protection strategy.

What Yoüll Learn Create comprehensive assessment and risk identification policies and procedures
Implement a complete vulnerability management workflow in nine easy steps
Understand the implications of active, dormant, and carrier vulnerability states
Develop, deploy, and maintain custom and commercial vulnerability management programs
Discover the best strategies for vulnerability remediation, mitigation, and removal
Automate credentialed scans that leverage least-privilege access principles
Read real-world case studies that share successful strategies and reveal potential pitfalls

Who This Book Is For

New and intermediate security management professionals, auditors, and information technology staff looking to build an effective vulnerability management program and defend against asset based cyberattacks
Build an effective vulnerability management strategy to protect your organization¿s assets, applications, and data.
Today¿s network environments are dynamic, requiring multiple defenses to mitigate vulnerabilities and stop data breaches. In the modern enterprise, everything connected to the network is a target. Attack surfaces are rapidly expanding to include not only traditional servers and desktops, but also routers, printers, cameras, and other IOT devices. It doesn¿t matter whether an organization uses LAN, WAN, wireless, or even a modern PAN¿savvy criminals have more potential entry points than ever before. To stay ahead of these threats, IT and security leaders must be aware of exposures and understand their potential impact.

Asset Attack Vectors will help you build a vulnerability management program designed to work in the modern threat environment. Drawing on years of combined experience, the authors detail the latest techniques for threat analysis, risk measurement, and regulatory reporting. They also outline practical service level agreements (SLAs) for vulnerability management and patch management.

Vulnerability management needs to be more than a compliance check box; it should be the foundation of your organization¿s cybersecurity strategy. Read Asset Attack Vectors to get ahead of threats and protect your organization with an effective asset protection strategy.

What Yoüll Learn Create comprehensive assessment and risk identification policies and procedures
Implement a complete vulnerability management workflow in nine easy steps
Understand the implications of active, dormant, and carrier vulnerability states
Develop, deploy, and maintain custom and commercial vulnerability management programs
Discover the best strategies for vulnerability remediation, mitigation, and removal
Automate credentialed scans that leverage least-privilege access principles
Read real-world case studies that share successful strategies and reveal potential pitfalls

Who This Book Is For

New and intermediate security management professionals, auditors, and information technology staff looking to build an effective vulnerability management program and defend against asset based cyberattacks
Über den Autor
Morey Haber has more than 20 years of IT industry experience and is the coauthor of Privileged Attack Vectors (Apress). He joined BeyondTrust in 2012 as a part of the eEye Digital Security acquisition. As the Chief Technology Officer, he currently oversees BeyondTrust technology for both vulnerability and privileged access management solutions. In 2004, Morey joined eEye as the Director of Security Engineering and was responsible for strategic business discussions and vulnerability management architectures in Fortune 500 clients. Prior to eEye, he was a Development Manager for Computer Associates, Inc. (CA), responsible for new product beta cycles and named customer accounts. Morey began his career as a Reliability and Maintainability Engineer for a government contractor building flight and training simulators. He earned a Bachelor of Science degree in Electrical Engineering from the State University of New York at Stony Brook.

Brad Hibbert is Chief Operations Officer (COO) and Chief Strategy Officer (CSO) and is the coauthor of Privileged Attack Vectors (Apress). He provides the leadership for his organization's solutions strategy, product management, development, services, and support. He brings over 25 years of executive experience in the software industry aligning business and technical teams for success. He joined BeyondTrust via the company's acquisition of eEye Digital Security, where Brad led strategy and products. Under Brad's leadership, eEye launched several market firsts, including vulnerability management solutions for cloud, mobile, and virtualization technologies. Prior to eEye, Brad served as Vice President of Strategy and Products at NetPro before its acquisition in 2008 by Quest Software. Over the years, Brad has attained many industry certifications to support his management, consulting, and development activities. Brad has his Bachelor of Commerce degree, Specialization in Management Information Systems, and MBA degree from the University of Ottawa.

Zusammenfassung

Teaches you about the cyberattack chain and how security flaws from vulnerabilities to misconfigurations can lead to the exploitation of assets and a security breach

Covers the required policies, procedures, regulations, and disclosure of vulnerabilities for vendors and end users

Explores common vulnerability management mistakes, architectural considerations, and technology required to build an effective vulnerability management program

Inhaltsverzeichnis
Chapter 1: The Attack Chain.- Chapter 2: The Vulnerability Landscape.- Chapter 3: Threat Intelligence.- Chapter 4: Credential Asset Risks.- Chapter 5: Vulnerability Assessment.- Chapter 6: Configuration Assessment.- Chapter 7: Risk Measurement.- Chapter 8: Vulnerability States.- Chapter 9: Vulnerability Authorities.- Chapter 10: Penetration Testing.- Chapter 11: Remediation.- Chapter 12: The Vulnerability Management Program.- Chapter 13: Vulnerability Management Planning.- Chapter 14: Vulnerability Management Development.- Chapter 15: Vulnerability Management Deployment.- Chapter 16: Vulnerability Management Operations.- Chapter 17: Vulnerability Management Architecture.- Chapter 18: Sample Vulnerability Plan.- Chapter 19: Regulatory Compliance.- Chapter 20: Risk Management Frameworks.- Chapter 21: Making It All Work.- Chapter 22: Tales from the Trenches.- Chapter 23: Final Recommendations.- Chapter 24: Conclusion.- Appendix A: Sample Request For Proposal (RFP).- Appendix B: Request for Proposal Spreadsheet.-
Details
Erscheinungsjahr: 2018
Genre: Informatik
Rubrik: Naturwissenschaften & Technik
Medium: Taschenbuch
Inhalt: xxxvii
371 S.
33 s/w Illustr.
371 p. 33 illus.
ISBN-13: 9781484236260
ISBN-10: 1484236262
Sprache: Englisch
Herstellernummer: 978-1-4842-3626-0
Ausstattung / Beilage: Paperback
Einband: Kartoniert / Broschiert
Autor: Hibbert, Brad
Haber, Morey J.
Auflage: 1st ed.
Hersteller: Apress
Apress L.P.
Maße: 235 x 155 x 23 mm
Von/Mit: Brad Hibbert (u. a.)
Erscheinungsdatum: 16.06.2018
Gewicht: 0,622 kg
Artikel-ID: 113049169
Über den Autor
Morey Haber has more than 20 years of IT industry experience and is the coauthor of Privileged Attack Vectors (Apress). He joined BeyondTrust in 2012 as a part of the eEye Digital Security acquisition. As the Chief Technology Officer, he currently oversees BeyondTrust technology for both vulnerability and privileged access management solutions. In 2004, Morey joined eEye as the Director of Security Engineering and was responsible for strategic business discussions and vulnerability management architectures in Fortune 500 clients. Prior to eEye, he was a Development Manager for Computer Associates, Inc. (CA), responsible for new product beta cycles and named customer accounts. Morey began his career as a Reliability and Maintainability Engineer for a government contractor building flight and training simulators. He earned a Bachelor of Science degree in Electrical Engineering from the State University of New York at Stony Brook.

Brad Hibbert is Chief Operations Officer (COO) and Chief Strategy Officer (CSO) and is the coauthor of Privileged Attack Vectors (Apress). He provides the leadership for his organization's solutions strategy, product management, development, services, and support. He brings over 25 years of executive experience in the software industry aligning business and technical teams for success. He joined BeyondTrust via the company's acquisition of eEye Digital Security, where Brad led strategy and products. Under Brad's leadership, eEye launched several market firsts, including vulnerability management solutions for cloud, mobile, and virtualization technologies. Prior to eEye, Brad served as Vice President of Strategy and Products at NetPro before its acquisition in 2008 by Quest Software. Over the years, Brad has attained many industry certifications to support his management, consulting, and development activities. Brad has his Bachelor of Commerce degree, Specialization in Management Information Systems, and MBA degree from the University of Ottawa.

Zusammenfassung

Teaches you about the cyberattack chain and how security flaws from vulnerabilities to misconfigurations can lead to the exploitation of assets and a security breach

Covers the required policies, procedures, regulations, and disclosure of vulnerabilities for vendors and end users

Explores common vulnerability management mistakes, architectural considerations, and technology required to build an effective vulnerability management program

Inhaltsverzeichnis
Chapter 1: The Attack Chain.- Chapter 2: The Vulnerability Landscape.- Chapter 3: Threat Intelligence.- Chapter 4: Credential Asset Risks.- Chapter 5: Vulnerability Assessment.- Chapter 6: Configuration Assessment.- Chapter 7: Risk Measurement.- Chapter 8: Vulnerability States.- Chapter 9: Vulnerability Authorities.- Chapter 10: Penetration Testing.- Chapter 11: Remediation.- Chapter 12: The Vulnerability Management Program.- Chapter 13: Vulnerability Management Planning.- Chapter 14: Vulnerability Management Development.- Chapter 15: Vulnerability Management Deployment.- Chapter 16: Vulnerability Management Operations.- Chapter 17: Vulnerability Management Architecture.- Chapter 18: Sample Vulnerability Plan.- Chapter 19: Regulatory Compliance.- Chapter 20: Risk Management Frameworks.- Chapter 21: Making It All Work.- Chapter 22: Tales from the Trenches.- Chapter 23: Final Recommendations.- Chapter 24: Conclusion.- Appendix A: Sample Request For Proposal (RFP).- Appendix B: Request for Proposal Spreadsheet.-
Details
Erscheinungsjahr: 2018
Genre: Informatik
Rubrik: Naturwissenschaften & Technik
Medium: Taschenbuch
Inhalt: xxxvii
371 S.
33 s/w Illustr.
371 p. 33 illus.
ISBN-13: 9781484236260
ISBN-10: 1484236262
Sprache: Englisch
Herstellernummer: 978-1-4842-3626-0
Ausstattung / Beilage: Paperback
Einband: Kartoniert / Broschiert
Autor: Hibbert, Brad
Haber, Morey J.
Auflage: 1st ed.
Hersteller: Apress
Apress L.P.
Maße: 235 x 155 x 23 mm
Von/Mit: Brad Hibbert (u. a.)
Erscheinungsdatum: 16.06.2018
Gewicht: 0,622 kg
Artikel-ID: 113049169
Warnhinweis

Ähnliche Produkte

Ähnliche Produkte