The 10 most important to-dos
To finish the book, we wanted to highlight what we believe to be 10 of the most important areas covered within this book. These items are not listed in any priority order, but we feel they should be the focus of attention for your security program.
Implementing identity protection and privileged access
In a world that has shifted to the internet for an anywhere-at-any-time access model, identities have become the target of attention and are fundamental for gaining access to your environment. Because of this, it is critical that your identity protection program has multiple layers of protection and preventative measures in place.
Proper identity protection will require implementing account and access management tools and enforcing the principle of least privilege. A user must only be provided access to the specific data, applications, and systems that are necessary for their job role. Use role-based access control (RBAC) to streamline access...