Information Security Handbook

Information Security Handbook

By : Darren Death

Buy this Book

Information Security Handbook

By: Darren Death

Buy this Book

Overview of this book

Having an information security mechanism is one of the most crucial factors for any organization. Important assets of organization demand a proper risk management and threat model for security, and so information security concepts are gaining a lot of traction. This book starts with the concept of information security and shows you why it’s important. It then moves on to modules such as threat modeling, risk management, and mitigation. It also covers the concepts of incident response systems, information rights management, and more. Moving on, it guides you to build your own information security framework as the best fit for your organization. Toward the end, you’ll discover some best practices that can be implemented to make your security framework strong. By the end of this book, you will be well-versed with all the factors involved in information security, which will help you build a security framework that is a perfect fit your organization’s requirements.

Title Page

Credits

About the Author

About the Reviewers

www.PacktPub.com

Customer Feedback

Preface

Free Chapter

Information and Data Security Fundamentals

Information security challenges

Evolution of cybercrime

The modern role of information security

Organizational information security assessment

Risk management

Information security standards

Policies

Training

Summary

Defining the Threat Landscape

What is important to your organization and who wants it?

Hackers and hacking

Closing information system vulnerabilities

Vulnerability management

Summary

Preparing for Information and Data Security

Establishing an information security program

Information security policies

Recommended operational policies

Summary

Information Security Risk Management

What is risk?

Who owns organizational risk?

Where is your valuable data?

Performing a quick risk assessment

Risk management is an organization-wide activity

Security control selection

Security control implementation

Assessing implemented security controls

Authorizing information systems to operate

Monitoring information system security controls

Calculating risk

Summary

Developing Your Information and Data Security Plan

Determine your information security program objectives

Elements for a successful information security program

Helping to guarantee success

Key information security program plan elements

Defining enforcement authority

Pulling it all together

Summary

Continuous Testing and Monitoring

Types of technical testing

SDLC considerations for testing

Continuous monitoring

Vulnerability assessment

Penetration testing

Difference between vulnerability assessment and penetration testing

Examples of successful attacks in the news

Summary

Business Continuity/Disaster Recovery Planning

Scope of BCDR plan

Designing the BCDR plan

Requirements and context gathering – business impact assessment

Define technical disasters recovery mechanisms

Develop your plan

Test the BCDR plan

Summary

Incident Response Planning

Do I need an incident response plan?

Components of an incident response plan

Preparing the incident response plan

Identification – detection and analysis

Identification – incident response tools

Remediation – containment/recovery/mitigation

Remediation - incident response tools

Post incident activity

Summary

Developing a Security Operations Center

Responsibilities of the SOC

Management of security operations center tools

Security operation center toolset design

Security operations center roles

Processes and procedures

Security operations center tools

Summary

Developing an Information Security Architecture Program

Information security architecture and SDLC/SELC

Conducting an initial information security analysis

Developing a security architecture advisement program

Summary

Cloud Security Consideration

Cloud computing characteristics

Cloud computing service models

Cloud computing deployment models

Cloud computing management models

Cloud computing special consideration

Summary

Information and Data Security Best Practices

Information security best practices

Application security

Network security

Summary

Customer Reviews

5 star

4 star

3 star

2 star

1 star

Remediation – containment/recovery/mitigation

Remediation is the point in the process where you, as the incident responder, engage the threat and work to protect the organization from further harm.

We are now at the point in the process where we perform the actions necessary to respond to the threat. This is made possible through the high-quality data made available through the observe and orient tools. We have taken that data and made an appropriate decision based on our organization's mission and legal requirements. With that decision, we implement the appropriate information security tools to do the following:

Contain the threat:
- Initially limiting damage: Ensuring that the attacker is unable, or finds it very difficult, to cause damage to other information systems.
- Fully containing threat: The reality is that as you respond to the incident you may not be able to fully contain the threat within the first few minutes of the incident. However, your goal is full containment so that you can...

Information Security Handbook

By : Darren Death

Information Security Handbook

By: Darren Death

Overview of this book

Related Content you might be interested in

Current Title:

Information Security Handbook

Mastering Information Security Compliance Management

ISACA Certified in Risk and Information Systems Control (CRISC®) Exam Guide

Cybersecurity Leadership Demystified

Remediation – containment/recovery/mitigation