Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Information Security Handbook Develop a threat model and incident response strategy to build a strong information security framework

Product type Paperback

Published in Dec 2017

Publisher

ISBN-13 9781788478830

Length 330 pages

Edition 1st Edition

Concepts

Information Security

Author (1):

Darren Death

View More author details

Table of Contents (13) Chapters

Preface

1. Information and Data Security Fundamentals FREE CHAPTER

2. Defining the Threat Landscape

3. Preparing for Information and Data Security

4. Information Security Risk Management

5. Developing Your Information and Data Security Plan

6. Continuous Testing and Monitoring

7. Business Continuity/Disaster Recovery Planning

8. Incident Response Planning

9. Developing a Security Operations Center

10. Developing an Information Security Architecture Program

11. Cloud Security Consideration

12. Information and Data Security Best Practices

Continuous Testing and Monitoring

Vulnerabilities are part of the life cycle of the modern information system. Software and hardware are rushed to market with often inadequate testing, resulting in an organizational information system that is a patchwork of potentially highly vulnerable systems. It is important for the information security professional to understand that vulnerabilities in information systems are a fact of life that is not going away anytime soon. The key to protecting the modern information system is continued vigilance through continuous technical testing.

In this chapter, you will learn:

Technical testing categories at your disposal
Testing integration into the SDLC
Continuous monitoring considerations
Vulnerability assessment considerations
Penetration testing considerations

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (1)

Death

Darren Death is ASRC Federal's Chief Information Security Officer. He is responsible for managing the enterprise cybersecurity program across a 3 billion-dollar portfolio of business sectors, including financial services, government contracting, and construction. A proven technology leader with over 20 years of experience deploying enterprise systems for large private and public organizations, Darren Death has led, designed, and implemented large-scale, organizational-wide enterprise IT systems with far-reaching impact. Before joining ASRC Federal, while at the Department of Justice, he was responsible for creating a nationwide enterprise processing capability across the US Attorney, Marshalls Service, and the Bureau of Alcohol, Tobacco, and Firearms divisions. At the Library of Congress, Darren was responsible for all emerging technologies related to information security. He holds a doctoral degree in information technology, specializing in information assurance and cybersecurity.

See other products by Death