Enterprise Cybersecurity empowers organizations of all sizes to defend themselves with next-generation cybersecurity programs against the escalating threat of modern targeted cyberattacks. This book presents a comprehensive framework for managing all aspects of an enterprise cybersecurity program. It enables an enterprise to architect, design, implement, and operate a coherent cybersecurity program that is seamlessly coordinated with policy, programmatics, IT life cycle, and assessment. Fail-safe cyberdefense is a pipe dream. Given sufficient time, an intelligent attacker can eventually defeat defensive measures protecting an enterprise’s computer systems and IT networks. To prevail, an enterprise cybersecurity program must manage risk by detecting attacks early enough and delaying them long enough that the defenders have time to respond effectively. Enterprise Cybersecurity shows players at all levels of responsibility how to unify their organization’s people, budgets, technologies, and processes into a cost-efficient cybersecurity program capable of countering advanced cyberattacks and containing damage in the event of a breach. The authors of Enterprise Cybersecurity explain at both strategic and tactical levels how to accomplish the mission of leading, designing, deploying, operating, managing, and supporting cybersecurity capabilities in an enterprise environment. The authors are recognized experts and thought leaders in this rapidly evolving field, drawing on decades of collective experience in cybersecurity and IT. In capacities ranging from executive strategist to systems architect to cybercombatant, Scott E. Donaldson, Stanley G. Siegel, Chris K. Williams, and Abdul Aslam have fought on the front lines of cybersecurity against advanced persistent threats to government, military, and business entities.
[1]
Thomas Peltier,et al.
Information Security Risk Analysis: A Pedagogic Model Based on a Teaching Hospital
,
2006
.
[2]
A. Clark,et al.
Enterprise Security Architecture: A Business-Driven Approach
,
2005
.
[3]
Eoghan Casey,et al.
Handbook of Digital Forensics and Investigation
,
2009
.
[4]
Julia H. Allen,et al.
Governing for Enterprise Security (GES) Implementation Guide
,
2007
.
[5]
COVER FE ATURE.
MOVING TOWARD TRUSTWORTHY SYSTEMS: R&D ESSENTIALS
,
2010
.
[6]
Shon Harris.
CISSP All-in-One Exam Guide, Fifth Edition
,
2009
.
[7]
尚弘 島影.
National Institute of Standards and Technologyにおける超伝導研究及び生活
,
2001
.
[8]
Eric Michael Hutchins,et al.
Intelligence-Driven Computer Network Defense Informed by Analysis of Adversary Campaigns and Intrusion Kill Chains
,
2010
.
[9]
Atul Kahate.
Cryptography and Network Security
,
2009
.
[10]
J. Mutch,et al.
Preventing Good People from doing Bad Things
,
2011
.
[11]
Scott E. Donaldson,et al.
Successful Software Development
,
2001
.
[12]
Adolfo S. Coronado.
Principles of Computer Security: CompTIA Security+™
,
2013
.