Defensive Security Handbook
Best Practices for Securing Infrastructure
2nd Edition
Published on 5. July 2024
Book
Paperback/Softback
285 pages
978-1-0981-2724-4 (ISBN)
Description
Despite the increase of high-profile hacks, record-breaking data leaks, and ransomware attacks, many organizations don't have the budget for an information security (InfoSec) program. If you're forced to protect yourself by improvising on the job, this pragmatic guide provides a security-101 handbook with steps, tools, processes, and ideas to help you drive maximum-security improvement at little or no cost.
Each chapter in this book provides step-by-step instructions for dealing with issues such as breaches and disasters, compliance, network infrastructure, password management, vulnerability scanning, penetration testing, and more. Network engineers, system administrators, and security professionals will learn how to use frameworks, tools, and techniques to build and improve their cybersecurity programs.
This book will help you:
Plan and design incident response, disaster recovery, compliance, and physical security
Learn and apply basic penetration testing concepts through purple teaming
Conduct vulnerability management using automated processes and tools
Use IDS, IPS, SOC, logging, and monitoring
Bolster Microsoft and Unix systems, network infrastructure, and password management
Use segmentation practices and designs to compartmentalize your network
Reduce exploitable errors by developing code securely
Each chapter in this book provides step-by-step instructions for dealing with issues such as breaches and disasters, compliance, network infrastructure, password management, vulnerability scanning, penetration testing, and more. Network engineers, system administrators, and security professionals will learn how to use frameworks, tools, and techniques to build and improve their cybersecurity programs.
This book will help you:
Plan and design incident response, disaster recovery, compliance, and physical security
Learn and apply basic penetration testing concepts through purple teaming
Conduct vulnerability management using automated processes and tools
Use IDS, IPS, SOC, logging, and monitoring
Bolster Microsoft and Unix systems, network infrastructure, and password management
Use segmentation practices and designs to compartmentalize your network
Reduce exploitable errors by developing code securely
More details
Edition
2nd Revised edition
Language
English
Place of publication
Sebastopol
United States
Target group
Professional and scholarly
Edition type
Revised edition
Product notice
Paperback (trade)
Unsewn / adhesive bound
Dimensions
Height: 231 mm
Width: 175 mm
Thickness: 19 mm
Weight
638 gr
ISBN-13
978-1-0981-2724-4 (9781098127244)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Other editions
Additional editions
Lee Brotherston | Amanda Berlin | William F. Reyor III
Defensive Security Handbook
E-Book
06/2024
O'Reilly
€50.49
Available for download
Lee Brotherston | Amanda Berlin | William F. Reyor III
Defensive Security Handbook
E-Book
06/2024
O'Reilly
€50.49
Available for download
Previous edition
Lee Brotherston | Amanda Berlin
Defensive Security Handbook
Book
05/2017
O'Reilly
€69.51
Article exhausted; check for reprint
Persons
Lee Brotherston is the founding security engineer at OpsHelm. Having spent more than a decade in Information Security, Lee has worked as an Internal Security resource across many verticals including Finance, Telecommunications, Hospitality, Entertainment, and Government in roles ranging from Engineer to IT Security Manager. Amanda Berlin is a highly accomplished network defender and public speaker. She is a principal detection and product manager for Blumira, leading an R&D team dedicated to lowering time to detection and improving the overall security landscape. She has spent over a decade in different areas of technology and sectors providing infrastructure support, triage, and design. Amanda has been involved in implementing a secure PCI process and HIPAA compliance as well as building a comprehensive phishing and awards-based user education program. Amanda serves as the founder and CEO of Mental Health Hackers, a nonprofit dedicated to providing education and guidance to tech workers around mental health topics. Amanda is also the co-host of the "Brakeing Down Security" podcast. On X, she's @InfoSystir. William F. Reyor III, based in Connecticut, is a seasoned threat researcher and director of security at Modus Create. He has a wealth of experience across various technology sectors, providing critical cybersecurity support and innovative solutions. His notable career trajectory includes key roles at prominent organizations (such as The Walt Disney Company and Raytheon Technologies) and Chief Information Security Officer at Fairfield University. His work primarily revolves around investigating threat actor activities, developing automated threat detections, and streamlining incident responses. Additionally, William has made significant contributions to the cybersecurity community as one of the lead organizers for Security BSides Connecticut since 2011.