You're reading from Mastering Windows Security and Hardening Secure and protect your Windows environment from cyber threats using zero-trust security principles

Product type Paperback

Published in Aug 2022

Publisher Packt

ISBN-13 9781803236544

Length 816 pages

Edition 2nd Edition

Concepts

Cybersecurity

Authors (2):

Matt Tumbarello

Mark Dunkerley

View More author details

Table of Contents (21) Chapters

Preface

1. Part 1: Getting Started and Fundamentals

2. Chapter 1: Fundamentals of Windows Security FREE CHAPTER

3. Chapter 2: Building a Baseline

4. Chapter 3: Hardware and Virtualization

5. Chapter 4: Networking Fundamentals for Hardening Windows

6. Chapter 5: Identity and Access Management

7. Part 2: Applying Security and Hardening

8. Chapter 6: Administration and Policy Management

9. Chapter 7: Deploying Windows Securely

10. Chapter 8: Keeping Your Windows Client Secure

11. Chapter 9: Advanced Hardening for Windows Clients

12. Chapter 10: Mitigating Common Attack Vectors

13. Chapter 11: Server Infrastructure Management

14. Chapter 12: Keeping Your Windows Server Secure

15. Part 3: Protecting, Detecting, and Responding for Windows Environments

16. Chapter 13: Security Monitoring and Reporting

17. Chapter 14: Security Operations

18. Chapter 15: Testing and Auditing

19. Chapter 16: Top 10 Recommendations and the Future

20. Other Books You May Enjoy

Summary

In this chapter, we covered—at a high level—what you can expect to read throughout this book. We provided an overview of security in an enterprise and covered the different roles that you can expect to see within security departments. Next, we looked at how security relates to the digital world and its relevance as the world becomes more digital. We also looked at the usage of Windows throughout the world to better understand its adoption by users.

We then reviewed the current threat landscape and the types of cyber threats and covered ransomware preparedness. After reviewing threats in the enterprise, we then provided details on where you can go to learn about recent Microsoft vulnerabilities, with correlating patches and instructions on how to update. In addition to Microsoft’s vulnerability resources, we provided insight into where patches get their naming standards via CVE, along with NVD (NIST). Next, we looked at some of the biggest breaches that have occurred to date and provided some popular sources to keep you up to date with the latest cyber news. We finished the chapter with an insight into some of today’s general security challenges and—more specifically—those with Windows systems, before closing with an overview of zero-trust security and what it entails.

In the next chapter, we will review building a baseline. This chapter will review what a baseline is and then go into detail as to why a baseline must be formed. As part of the baseline, you need to ensure your policies, standards, and procedures are in place and are well defined and signed off by the leadership team and all the stakeholders who are liable for protecting the data. Having these documented is important for security reasons, as well as for compliance and auditing purposes. Following this, we will briefly cover change management and its importance as it relates to baselining. We will then review frameworks and what they entail before moving on to some common frameworks that should be referenced when building your baseline. We will finish the chapter with a review of baseline controls and how to implement them.

You're reading from Mastering Windows Security and Hardening Secure and protect your Windows environment from cyber threats using zero-trust security principles

Table of Contents (21) Chapters Close

Summary

Authors (2)

Personalised recommendations for you

Table of Contents (21) Chapters