Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Information Security Handbook Develop a threat model and incident response strategy to build a strong information security framework

Product type Paperback

Published in Dec 2017

Publisher

ISBN-13 9781788478830

Length 330 pages

Edition 1st Edition

Concepts

Information Security

Author (1):

Darren Death

View More author details

Table of Contents (13) Chapters

Preface

1. Information and Data Security Fundamentals FREE CHAPTER

2. Defining the Threat Landscape

3. Preparing for Information and Data Security

4. Information Security Risk Management

5. Developing Your Information and Data Security Plan

6. Continuous Testing and Monitoring

7. Business Continuity/Disaster Recovery Planning

8. Incident Response Planning

9. Developing a Security Operations Center

10. Developing an Information Security Architecture Program

11. Cloud Security Consideration

12. Information and Data Security Best Practices

Elements for a successful information security program

The following are the elements for a successful information security program:

Policy: The rules for how your information security program behaves in addition to organizational policy
Information security services: Technical and operational capabilities provided to the organization as a service:
- Vulnerability management service (vulnerability scanners)
- Malware detection services (antivirus/anti-malware)
- Log monitoring services (SIEM/log aggregation)
- Threat detection services (host and network IDs)
Security architecture: Working with the business and IT teams to ensure that new IT systems are properly architected to properly protect the information that they contain commensurate with the information's value
Information security guidance: Working with the business and IT teams helping them to properly understand and...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Death

Darren Death is ASRC Federal's Chief Information Security Officer. He is responsible for managing the enterprise cybersecurity program across a 3 billion-dollar portfolio of business sectors, including financial services, government contracting, and construction. A proven technology leader with over 20 years of experience deploying enterprise systems for large private and public organizations, Darren Death has led, designed, and implemented large-scale, organizational-wide enterprise IT systems with far-reaching impact. Before joining ASRC Federal, while at the Department of Justice, he was responsible for creating a nationwide enterprise processing capability across the US Attorney, Marshalls Service, and the Bureau of Alcohol, Tobacco, and Firearms divisions. At the Library of Congress, Darren was responsible for all emerging technologies related to information security. He holds a doctoral degree in information technology, specializing in information assurance and cybersecurity.

See other products by Death