ebook img

Crafting the InfoSec Playbook PDF

275 Pages·2015·10.53 MB·English
by  
Save to my drive
Quick download
Download
Most books are stored in the elastic cloud where traffic is expensive. For this reason, we have a limit on daily download.

Preview Crafting the InfoSec Playbook

INFORMATION SECURITY Crafting the InfoSec Playbook ISBN: 978-1-491-94940-5 US $49.99 CAN $57.99 “Safety when walking from a restaurant to your car in a dangerous inner-city neighborhood doesn't depend on martial arts as much as posture, situational awareness, inner calm, self-honesty, and certainty of purpose. So it is with computer and network security, as this book most excellently shows.” —Paul Vixie CEO, Farsight Security Twitter: @oreillymedia facebook.com/oreilly Any good attacker will tell you that expensive security monitoring and prevention tools aren’t enough to keep you secure. This practical book demonstrates a data-centric approach to distilling complex security monitoring, incident response, and threat analysis ideas into their most basic elements. You'll learn how to develop your own threat intelligence and incident detection strategy, rather than depend on security tools alone. Written by members of Cisco's Computer Security Incident Response Team, this book shows IT and information security professionals how to create an InfoSec playbook by developing strategy, technique, and architecture. ■ Learn incident response fundamentals—and the importance of getting back to basics ■ Understand threats you face and what you should be protecting ■ Collect, mine, organize, and analyze as many relevant data sources as possible ■ Build your own playbook of repeatable methods for security monitoring and response ■ Learn how to put your plan into action and keep it running smoothly ■ Select the right monitoring and detection tools for your environment ■ Develop queries to help you sort through data and create valuable reports ■ Know what actions to take during the incident response phase Jeff Bollinger, an information security investigator with over fifteen years of information security experience, has worked as security architect and incident responder for both academic and corporate networks. Brandon Enright is a senior information security investigator with Cisco Systems. He’s a graduate of UC San Diego, where he conducted research in the Systems and Networking group. Matthew Valites is a senior investigator on Cisco’s CSIRT, focusing on incident response and monitoring solutions for enterprise cloud and hosted services. Jeff Bollinger, Brandon Enright & Matthew Valites Crafting the InfoSec Playbook SECURITY MONITORING AND INCIDENT RESPONSE MASTER PLAN Crafting the InfoSec Playbook Bollinger, Enright & Valites www.it-ebooks.info INFORMATION SECURITY Crafting the InfoSec Playbook ISBN: 978-1-491-94940-5 US $49.99 CAN $57.99 “Safety when walking from a restaurant to your car in a dangerous inner-city neighborhood doesn't depend on martial arts as much as posture, situational awareness, inner calm, self-honesty, and certainty of purpose. So it is with computer and network security, as this book most excellently shows.” —Paul Vixie CEO, Farsight Security Twitter: @oreillymedia facebook.com/oreilly Any good attacker will tell you that expensive security monitoring and prevention tools aren’t enough to keep you secure. This practical book demonstrates a data-centric approach to distilling complex security monitoring, incident response, and threat analysis ideas into their most basic elements. You'll learn how to develop your own threat intelligence and incident detection strategy, rather than depend on security tools alone. Written by members of Cisco's Computer Security Incident Response Team, this book shows IT and information security professionals how to create an InfoSec playbook by developing strategy, technique, and architecture. ■ Learn incident response fundamentals—and the importance of getting back to basics ■ Understand threats you face and what you should be protecting ■ Collect, mine, organize, and analyze as many relevant data sources as possible ■ Build your own playbook of repeatable methods for security monitoring and response ■ Learn how to put your plan into action and keep it running smoothly ■ Select the right monitoring and detection tools for your environment ■ Develop queries to help you sort through data and create valuable reports ■ Know what actions to take during the incident response phase Jeff Bollinger, an information security investigator with over fifteen years of information security experience, has worked as security architect and incident responder for both academic and corporate networks. Brandon Enright is a senior information security investigator with Cisco Systems. He’s a graduate of UC San Diego, where he conducted research in the Systems and Networking group. Matthew Valites is a senior investigator on Cisco’s CSIRT, focusing on incident response and monitoring solutions for enterprise cloud and hosted services. Jeff Bollinger, Brandon Enright & Matthew Valites Crafting the InfoSec Playbook SECURITY MONITORING AND INCIDENT RESPONSE MASTER PLAN Crafting the InfoSec Playbook Bollinger, Enright & Valites www.it-ebooks.info Jeff Bollinger, Brandon Enright & Matthew Valites Crafting the Infosec Playbook www.it-ebooks.info 978-1-491-94940-5 [LSI] Crafting the InfoSec Playbook by Jeff Bollinger, Brandon Enright, and Matthew Valites Copyright © 2015 Jeff Bollinger, Brandon Enright, and Matthew Valites. All rights reserved. Printed in the United States of America. Published by O’Reilly Media, Inc., 1005 Gravenstein Highway North, Sebastopol, CA 95472. O’Reilly books may be purchased for educational, business, or sales promotional use. Online editions are also available for most titles (http://safaribooksonline.com). For more information, contact our corporate/ institutional sales department: 800-998-9938 or

See more

The list of books you might like

Most books are stored in the elastic cloud where traffic is expensive. For this reason, we have a limit on daily download.