Book Image

Hands-On Cybersecurity for Finance

By : Dr. Erdal Ozkaya, Milad Aslaner

Book Image

Hands-On Cybersecurity for Finance

By: Dr. Erdal Ozkaya, Milad Aslaner

Overview of this book

Organizations have always been a target of cybercrime. Hands-On Cybersecurity for Finance teaches you how to successfully defend your system against common cyber threats, making sure your financial services are a step ahead in terms of security. The book begins by providing an overall description of cybersecurity, guiding you through some of the most important services and technologies currently at risk from cyber threats. Once you have familiarized yourself with the topic, you will explore specific technologies and threats based on case studies and real-life scenarios. As you progress through the chapters, you will discover vulnerabilities and bugs (including the human risk factor), gaining an expert-level view of the most recent threats. You'll then explore information on how you can achieve data and infrastructure protection. In the concluding chapters, you will cover recent and significant updates to procedures and configurations, accompanied by important details related to cybersecurity research and development in IT-based financial services. By the end of the book, you will have gained a basic understanding of the future of information security and will be able to protect financial services and their related infrastructures.

Preface

Who this book is for

What this book covers

To get the most out of this book

Free Chapter

Introduction to Cybersecurity and the Economy

Introduction to Cybersecurity and the Economy

What is cybersecurity – a brief technical description?

The scope of cybersecurity

General description of hacking groups and cyber espionage

Cybersecurity objectives

Financial repercussion of reputational damage caused by cyber attacks

Digital economy and related threats

Further reading

Cyber Crime - Who the Attackers Are

Cyber Crime - Who the Attackers Are

Introduction to cyber crime

Counting the Costs

Counting the Costs

The cost of a cybersecurity attack

Breakdown of the costs of a cyber attack

Breakdown of the cost of securing an organization

Further reading

The Threat Landscape

The Threat Landscape

Threats against end customers

Threats against financial institutes

Phishing, Spamming, and Scamming to Steal Data and Money

Phishing, Spamming, and Scamming to Steal Data and Money

Further reading

The Malware Plague

The Malware Plague

Malware categories

Malware infection vectors

Vulnerabilities and Exploits

Vulnerabilities and Exploits

Detecting vulnerabilities

Exploitation techniques

Exploitation delivery

Further reading

Attacking Online Banking Systems

Attacking Online Banking Systems

Online banking benefits for financial services

The online banking process

Attack techniques

Further reading

Vulnerable Networks and Services - a Gateway for Intrusion

Vulnerable Networks and Services - a Gateway for Intrusion

Vulnerable network protocols and network intrusions

Attacking web servers and web-based systems

Hacking wireless networks

Vulnerable network devices

Further reading

Responding to Service Disruption

Responding to Service Disruption

Cybersecurity incidents

Incident response and management

Further reading

The Human Problem - Governance Fail

The Human Problem - Governance Fail

Business versus security

Failing security management

Careless online behavior

Insider threats

Technological transformation of financial services

Failure in implementing security policies

Further reading

Securing the Perimeter and Protecting the Assets

Securing the Perimeter and Protecting the Assets

Endpoint security

Further reading

Threat and Vulnerability Management

Threat and Vulnerability Management

Vulnerability management strategy

Defining vulnerabilities in a few steps

The root cause of security issues

Vulnerability management tools

Implementation of vulnerability management

Best practices for vulnerability management

Assess yourself

Understanding risk management

Defense in depth approach

Further reading

Audit, Risk Management, and Incident Handling

Audit, Risk Management, and Incident Handling

Risk management

Incident handling

Further reading

Encryption and Cryptography for Protecting Data and Services

Encryption and Cryptography for Protecting Data and Services

Encryption today

Protecting data and services with cryptography

Examples of encryption algorithms

Encryption challenges

Further reading

The Rise of the Blockchain

The Rise of the Blockchain

Introduction to Blockchain technology

Cryptocurrencies

Blockchain challenges and future

Further reading

Artificial Intelligence and Cybersecurity

Artificial Intelligence and Cybersecurity

Threat landscape evolution

Artificial Intelligence

Artificial Intelligence-powered cybersecurity

Further reading

The Quantum Future

The Quantum Future

Evolution of the quantum technology

The quantum technology race

Quantum technology breakthroughs

Impacts of the quantum technology

Further reading

Other Books You May Enjoy

Other Books You May Enjoy

Leave a review - let other readers know what you think

Customer Reviews

5 star

0

4 star

0

3 star

0

2 star

0

1 star

0

Summary

In this chapter, you've learned that cybersecurity isn't just about the technology. Technology is only as good as the person who uses it. It's about technology, people, and processes. When the service gets disrupted and when the threat actor is in your environment, don't panic. Panic will always lead to mistakes. Therefore, this chapter focused on providing you with insights, first, on what a cybersecurity incident is and, most importantly, on how you can respond to a service disruption by developing and implementing a successful incident response plan. The next chapter will briefly consider the human factor impacting the entire cybersecurity implementation including standard, policy, configuration, architecture and so on, from leader to doers.