Advanced Persistent Security - A Cyberwarfare Approach to Implementing Adaptive Enterprise Protection, Detection, and Reaction Strategies

Read more

Advanced Persistent Security covers secure network design and implementation, including authentication, authorization, data and access integrity, network monitoring, and risk assessment. Using such recent high profile cases as Target, Sony, and Home Depot, the book explores information security risks, identifies the common threats organizations face, and presents tactics on how to prioritize the right countermeasures.
The book discusses concepts such as malignant versus malicious threats, adversary mentality, motivation, the economics of cybercrime, the criminal infrastructure, dark webs, and the criminals organizations currently face.

• Contains practical and cost-effective recommendations for proactive and reactive protective measures
• Teaches users how to establish a viable threat intelligence program
• Focuses on how social networks present a double-edged sword against security programs

List of contents

1. What Is Advanced Persistent Security?
Section 1. Concepts/Foundation 2. Cyberwarfare Concepts 3. What Is Proaction? 4. Risk Management 5. How to Hack Computers 6. Threat 7. Adversary Infrastructure
Section 2. Protection 8. Governance 9. Vulnerabilities to Address 10. Countermeasures 11. Security Culture 12. What Is Threat Intelligence?
Section 3. Detection 13. What Is Detection? 14. Detection Deficit Disorder 15. The Human Intrusion Detection System 16. Kill Chain Analysis
Section 4. Reaction 17. Setting Reaction Strategy 18. Incident Response and Investigations
Section 5. Implementation 19. Know Yourself 20. Know Your Adversaries 21. Define Your Strategy 22. Determining the Appropriate Countermeasures 23. Advanced Persistent Security

About the author

Ira Winkler, CISSP is President of the Internet Security Advisors Group. He is considered one of the world¿s most influential security professionals, and has been named a ¿Modern Day James Bond” by the media. He obtained this status by identifying common trends in the way information and computer systems are compromised. He did this by performing penetration tests, where he physically and technically ¿broke into” some of the largest companies in the World and investigating crimes against them, and telling them how to cost effectively protect their information and computer infrastructure. He continues to perform these penetration tests, as well as assisting organizations in developing cost effective security programs. Ira also won the Hall of Fame award from the Information Systems Security Association.
Ira is also author of the riveting, entertaining, and educational book, Spies Among Us. He is also a regular contributor to ComputerWorld.com.
Mr. Winkler began his career at the National Security Agency, where he served as an Intelligence and Computer Systems Analyst. He moved onto support other US and overseas government military and intelligence agencies. After leaving government service, he went on to serve as President of the Internet Security Advisors Group and Director of Technology of the National Computer Security Association. He was also on the Graduate and Undergraduate faculties of the Johns Hopkins University and the University of Maryland.
Mr. Winkler has also written the book Corporate Espionage, which has been described as the bible of the Information Security field, and the bestselling Through the Eyes of the Enemy. Both books address the threats that companies face protecting their information. He has also written over 100 professional and trade articles. He has been featured and frequently appears on TV on every continent. He has also been featured in magazines and newspapers including Forbes, USA Today, and Wall Street Journal.

Report

"...this book couldn't be more topical.it provides those who are tasked to implement an organization's security strategy with an easy-to-follow plan of action to cover - and keep covering - all their bases." --Help Net Security
"The authors propose methods for more adaptive and comprehensive approaches to information security.For those looking for a methodology to create a more robust information security program, Advanced Persistent Security is a valuable resource." --RSAConference.com