Book Image

The Cybersecurity Playbook for Modern Enterprises

By : Jeremy Wittkop
Book Image

The Cybersecurity Playbook for Modern Enterprises

By: Jeremy Wittkop

Overview of this book

Security is everyone's responsibility and for any organization, the focus should be to educate their employees about the different types of security attacks and how to ensure that security is not compromised. This cybersecurity book starts by defining the modern security and regulatory landscape, helping you understand the challenges related to human behavior and how attacks take place. You'll then see how to build effective cybersecurity awareness and modern information security programs. Once you've learned about the challenges in securing a modern enterprise, the book will take you through solutions or alternative approaches to overcome those issues and explain the importance of technologies such as cloud access security brokers, identity and access management solutions, and endpoint security platforms. As you advance, you'll discover how automation plays an important role in solving some key challenges and controlling long-term costs while building a maturing program. Toward the end, you'll also find tips and tricks to keep yourself and your loved ones safe from an increasingly dangerous digital world. By the end of this book, you'll have gained a holistic understanding of cybersecurity and how it evolves to meet the challenges of today and tomorrow.
Table of Contents (15 chapters)
Section 1 – Modern Security Challenges
Section 2 – Building an Effective Program
Section 3 – Solutions to Common Problems

Chapter 3

  1. Describe the major threat actor groups and how they differ from each other.

The three major threat actor groups are organized criminals, primarily motivated by financial gain, state-sponsored actors, motivated to advance their national interest in some way, and hacktivists and terrorists, who use cyberattacks to advance their ideology. (Section: Understanding the risk from targeted attacks)

  1. What are the stages of a ransomware attack?

Gaining access to a target system, installing malicious software, spreading the infection, notifying the victim, and making demands. (Section: Stages of an attack)

  1. How does an information theft attack differ from a ransomware attack?

In an information theft attack, there is no need to notify the victim to monetize the attack, so it may be performed in a clandestine manner. (Section: Stages of an attack)

  1. Which threat actor groups are likely to launch attacks with the intention of disrupting or...