Cybersecurity Risk Management: Mastering the Fundamentals Using the Nist Cybersecurity Framework
暫譯: 網路安全風險管理:運用NIST網路安全框架掌握基本原則
Brumfield, Cynthia, Haugli, Brian
相關主題
商品描述
A practical and effective blueprint for world-class cybersecurity risk management
In Cybersecurity Risk Management: Mastering the Fundamentals Using the NIST Cybersecurity Framework, veteran technology analyst Cynthia Brumfield, with contributions from cybersecurity expert Brian Haugli, delivers a straightforward and up-to-date exploration of the fundamentals of cybersecurity risk planning and management. The book offers readers easy-to-understand overviews of cybersecurity risk management principles, user, and network infrastructure planning, as well as the tools and techniques for detecting cyberattacks. The book also provides a roadmap to the development of a continuity of operations plan in the event of a cyberattack.
With incisive insights into the Framework for Improving Cybersecurity of Critical Infrastructure produced by the United States National Institute of Standards and Technology (NIST), Cybersecurity Risk Management presents the gold standard in practical guidance for the implementation of risk management best practices.
Filled with clear and easy-to-follow advice, this book also offers readers:
- A concise introduction to the principles of cybersecurity risk management and the steps necessary to manage digital risk to systems, assets, data, and capabilities
- A valuable exploration of modern tools that can improve an organization's network infrastructure protection
- A practical discussion of the challenges involved in detecting and responding to a cyberattack and the importance of continuous security monitoring
- A helpful examination of the recovery from cybersecurity incidents
Perfect for undergraduate and graduate students studying cybersecurity, Cybersecurity Risk Management is also an ideal resource for IT professionals working in private sector and government organizations worldwide who are considering implementing or who may be required to implement, the NIST framework at their organization.
商品描述(中文翻譯)
世界級網路安全風險管理的實用有效藍圖
在網路安全風險管理:使用NIST網路安全框架掌握基本原則一書中,資深技術分析師Cynthia Brumfield與網路安全專家Brian Haugli共同提供了一個簡明且最新的網路安全風險規劃與管理基本原則的探討。這本書為讀者提供了易於理解的網路安全風險管理原則、用戶及網路基礎設施規劃的概述,以及檢測網路攻擊的工具和技術。書中還提供了在發生網路攻擊時,制定業務持續運作計劃的路線圖。
透過對美國國家標準與技術研究所(NIST)所製作的關鍵基礎設施網路安全改善框架的深刻見解,網路安全風險管理提供了實施風險管理最佳實踐的黃金標準實用指導。
這本書充滿了清晰且易於遵循的建議,還為讀者提供了:
- 對網路安全風險管理原則的簡明介紹,以及管理系統、資產、數據和能力的數位風險所需的步驟
- 對現代工具的有價值探討,這些工具可以改善組織的網路基礎設施保護
- 對檢測和應對網路攻擊所面臨挑戰的實用討論,以及持續安全監控的重要性
- 對從網路安全事件中恢復的有用檢視
這本書非常適合學習網路安全的本科生和研究生,同時也是全球在私營部門和政府機構工作的IT專業人員的理想資源,特別是那些考慮實施或可能需要在其組織中實施NIST框架的人士。
作者簡介
Cynthia Brumfield is the President of DCT Associates and a veteran media, communications, and technology analyst who is now focused on cybersecurity. Backed by executive-level experience at top-tier U.S. communications trade associations, a premier investment analysis firm, and her own successful publication and consulting businesses, she has spearheaded research, analysis, consulting, publishing, and education initiatives for major organizations, including Fortune 500 corporations, security organizations, and federal government clients. In addition, she is an award-winning writer who currently runs a pioneering cybersecurity news destination, Metacurity, and writes regularly for top news outlets, including ongoing columns for CSO Online.
Brian Haugli is the Managing Partner and Founder of SideChannel. He has been driving security programs for two decades and brings a true practitioner's approach to the industry. He has led programs for the DoD, Pentagon, Intelligence Community, Fortune 500, and many others. In addition, Brian is a renowned speaker and expert on NIST guidance, threat intelligence implementations, and strategic organizational initiatives.
作者簡介(中文翻譯)
Cynthia Brumfield 是 DCT Associates 的總裁,並且是一位資深的媒體、通訊和技術分析師,現在專注於網絡安全。她擁有在美國頂尖通訊貿易協會、知名投資分析公司以及自己成功的出版和諮詢業務中的高層經驗,曾為包括《財富》500 強企業、安全組織和聯邦政府客戶在內的主要組織主導研究、分析、諮詢、出版和教育計劃。此外,她是一位獲獎作家,目前運營著一個開創性的網絡安全新聞平台 Metacurity,並定期為頂級新聞媒體撰寫文章,包括為 CSO Online 撰寫的專欄。
Brian Haugli 是 SideChannel 的管理合夥人和創始人。他在安全計劃方面已有二十年的經驗,並為行業帶來真正的實踐者視角。他曾為國防部、五角大廈、情報社群、《財富》500 強企業等多個機構主導計劃。此外,Brian 是一位知名演講者和 NIST 指導、威脅情報實施及戰略組織計劃的專家。
