You're reading from Mastering Windows Security and Hardening Secure and protect your Windows environment from cyber threats using zero-trust security principles

Product type Paperback

Published in Aug 2022

Publisher Packt

ISBN-13 9781803236544

Length 816 pages

Edition 2nd Edition

Concepts

Cybersecurity

Authors (2):

Matt Tumbarello

Mark Dunkerley

View More author details

Table of Contents (21) Chapters

Preface

1. Part 1: Getting Started and Fundamentals

2. Chapter 1: Fundamentals of Windows Security FREE CHAPTER

3. Chapter 2: Building a Baseline

4. Chapter 3: Hardware and Virtualization

5. Chapter 4: Networking Fundamentals for Hardening Windows

6. Chapter 5: Identity and Access Management

7. Part 2: Applying Security and Hardening

8. Chapter 6: Administration and Policy Management

9. Chapter 7: Deploying Windows Securely

10. Chapter 8: Keeping Your Windows Client Secure

11. Chapter 9: Advanced Hardening for Windows Clients

12. Chapter 10: Mitigating Common Attack Vectors

13. Chapter 11: Server Infrastructure Management

14. Chapter 12: Keeping Your Windows Server Secure

15. Part 3: Protecting, Detecting, and Responding for Windows Environments

16. Chapter 13: Security Monitoring and Reporting

17. Chapter 14: Security Operations

18. Chapter 15: Testing and Auditing

19. Chapter 16: Top 10 Recommendations and the Future

20. Other Books You May Enjoy

Preface

Throughout this book, you will be provided with the knowledge needed to protect your Windows environment and the users that access it. The book will cover a variety of topics that go beyond the hardening of just the operating system to include the management of devices, baselining, hardware, virtualization, networking, identity management, security operations, monitoring, auditing, and testing. The goal is to ensure that you understand the foundation of, and multiple layers involved in, providing improved protection for your Windows systems.

Since this book focuses on security, it's important to understand the core principles that form an information security model. These principles are known as the CIA triad, which stands for confidentiality, integrity, and availability. If you have pursued a security certification, such as the CISSP or Security+ certifications, you will be very familiar with this model. If not, it is recommended that you familiarize yourself with them as a security professional. This book will not go into detail about the CIA triad, but the concepts provided in this book will support the foundation of ensuring the confidentiality, integrity, and availability of information on the Windows systems you manage. At a high level, CIA means the following:

Confidentiality involves ensuring that no one other than those who are authorized to can access information.
Integrity involves ensuring that the information being protected is original and has not been modified without the correct authorization.
Availability involves ensuring that information is always available when access is needed.

This book is split into three sections to help guide you and provide the understanding and knowledge that's needed to implement a solid Windows security foundation within your organization. The first section will cover getting started and foundations for Windows security. The second section will focus on applying security and hardening with the third section providing information to protect, detect, and respond for Windows environments.