From Chapter 3, Understanding the Cybersecurity Kill Chain, to Chapter 8, Privilege Escalation we covered the attack strategies, and how the Red Team could enhance an organization's security posture by leveraging common attack techniques. Now it is time to switch gears and start looking at things from a defensive perspective. There is no other way to start talking about defense strategies other than by starting with security policies. A good set of security policies is essential to ensure that the entire company follows a well-defined set of ground rules that will help to safeguard its data and systems.
In this chapter, we are going to cover the following topics:
- Reviewing your security policy
- Educating the end user
- Policy enforcement
- Monitoring for compliance