Security Architecture for Hybrid Cloud: A Practical Method for Designing Security Using Zero Trust Principles (混合雲安全架構:基於零信任原則的實用設計方法)
Buckwell, Mark, Daele, Stefaan Van, Horst, Carsten
相關主題
商品描述
As the transformation to hybrid multicloud accelerates, businesses require a structured approach to securing their workloads. Adopting zero trust principles demands a systematic set of practices to deliver secure solutions. Regulated businesses, in particular, demand rigor in the architectural process to ensure the effectiveness of security controls and continued protection.
This book provides the first comprehensive method for hybrid multicloud security, integrating proven architectural techniques to deliver a comprehensive end-to-end security method with compliance, threat modeling, and zero trust practices. This method ensures repeatability and consistency in the development of secure solution architectures.
Architects will learn how to effectively identify threats and implement countermeasures through a combination of techniques, work products, and a demonstrative case study to reinforce learning. You'll examine:
- The importance of developing a solution architecture that integrates security for clear communication
- Roles that security architects perform and how the techniques relate to nonsecurity subject matter experts
- How security solution architecture is related to design thinking, enterprise security architecture, and engineering
- How architects can integrate security into a solution architecture for applications and infrastructure using a consistent end-to-end set of practices
- How to apply architectural thinking to the development of new security solutions
About the authors
Mark Buckwell is a cloud security architect at IBM with 30 years of information security experience.
Carsten Horst with more than 20 years of experience in Cybersecurity is a certified security architect and Associate Partner at IBM.
Stefaan Van daele has 25 years experience in Cybersecurity and is a Level 3 certified security architect at IBM.
商品描述(中文翻譯)
隨著混合多雲轉型的加速,企業需要一種結構化的方法來保護其工作負載。採用零信任原則需要一套系統化的實踐,以提供安全的解決方案。特別是受監管的企業,對架構過程的嚴謹性有著更高的要求,以確保安全控制的有效性和持續保護。
本書提供了混合多雲安全的首個全面方法,整合了經過驗證的架構技術,提供一種全面的端到端安全方法,涵蓋合規性、威脅建模和零信任實踐。這種方法確保了安全解決方案架構開發的可重複性和一致性。
架構師將學習如何有效識別威脅並通過技術、工作產品和示範案例研究的結合來實施對策,以加強學習。您將探討:
- 開發一個整合安全性的解決方案架構以便於清晰溝通的重要性
- 安全架構師所扮演的角色以及這些技術如何與非安全主題專家相關
- 安全解決方案架構如何與設計思維、企業安全架構和工程相關
- 架構師如何使用一致的端到端實踐將安全整合到應用程序和基礎設施的解決方案架構中
- 如何將架構思維應用於新安全解決方案的開發
關於作者
Mark Buckwell 是 IBM 的雲安全架構師,擁有 30 年的信息安全經驗。
Carsten Horst 擁有超過 20 年的網絡安全經驗,是一名認證的安全架構師及 IBM 的合夥人。
Stefaan Van daele 在網絡安全領域擁有 25 年的經驗,是 IBM 的三級認證安全架構師。