Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Enterprise Cloud Security and Governance Efficiently set data protection and privacy principles

Product type Paperback

Published in Dec 2017

Publisher Packt

ISBN-13 9781788299558

Length 410 pages

Edition 1st Edition

Tools

Ansible

Concepts

Cloud Security

Author (1):

Zeal Vora

View More author details

Table of Contents (11) Chapters

Preface

1. The Fundamentals of Cloud Security FREE CHAPTER

2. Defense in Depth Approach

3. Designing Defensive Network Infrastructure

4. Server Hardening

5. Cryptography Network Security

6. Automation in Security

7. Vulnerability, Pentest, and Patch Management

8. Security Logging and Monitoring

9. First Responder

10. Best Practices

Best practices

Throughout my time of being the owner and handling the entire vulnerability scanning and patch management activity of the entire organization, I have learned a lot. Here are some of the important things to remember:

CVSS is important, but don't always rely on it.
Also CVSS is an important benchmark in determining the overall score of a vulnerability. However, placing your priority on remediation of a vulnerability depending on CVSS scores is not always ideal.

Let's understand this with an example. The Heartbleed bug is one of the serious vulnerabilities in OpenSSL implementation that is widely used in a TLS protocol. This weakness typically allows the attacker to steal information that is encrypted and protected by SSL/TLS protocols. It can even compromise the secret keys that are used during the encryption process.

Now, typically for the banking sector...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Vora

Zeal Vora works as a DevSecOps Engineer primarily in the area of Defensive Security. He spends his days protecting and implementing security controls to help mitigate attacks both on the Cloud and servers. He is actively involved in security consultation, helping various startups which have been breached to overcome the breach and start again with a secure infrastructure.

See other products by Vora