The Cybersecurity Manager S Guide

The Cybersecurity Manager's Guide

Author : Todd Barnum

Publisher : "O'Reilly Media, Inc."

Page : 179 pages

File Size : 29,2 MB

Release : 2021-03-18

Category : Computers

ISBN : 149207618X

Get eBook

Book Description

If you're a leader in Cybersecurity, then you know it often seems like no one cares about--or understands--information security. Infosec professionals struggle to integrate security into their companies. Most are under resourced. Most are at odds with their organizations. There must be a better way. This essential manager's guide offers a new approach to building and maintaining an information security program that's both effective and easy to follow. Author and longtime infosec leader Todd Barnum upends the assumptions security professionals take for granted. CISOs, CSOs, CIOs, and IT security professionals will learn a simple seven-step process that will help you build a new program or improve your current program. Build better relationships with IT and other teams within your organization Align your role with your company's values, culture, and tolerance for information loss Lay the groundwork for your security program Create a communications program to share your team's contributions and educate your coworkers Transition security functions and responsibilities to other teams Organize and build an effective infosec team Measure your progress with two key metrics: your staff's ability to recognize and report security policy violations and phishing emails.



A Leader's Guide to Cybersecurity

Author : Thomas J. Parenty

Publisher : Harvard Business Press

Page : 162 pages

File Size : 31,39 MB

Release : 2019-12-03

Category : Business & Economics

ISBN : 1633698009

Get eBook

Book Description

Cybersecurity threats are on the rise. As a leader, you need to be prepared to keep your organization safe. Companies are investing an unprecedented amount of money to keep their data and assets safe, yet cyberattacks are on the rise--and the problem is worsening. No amount of technology, resources, or policies will reverse this trend. Only sound governance, originating with the board, can turn the tide. Protection against cyberattacks can't be treated as a problem solely belonging to an IT or cybersecurity department. It needs to cast a wide and impenetrable net that covers everything an organization does--from its business operations, models, and strategies to its products and intellectual property. And boards are in the best position to oversee the needed changes to strategy and hold their companies accountable. Not surprisingly, many boards aren't prepared to assume this responsibility. In A Leader's Guide to Cybersecurity, Thomas Parenty and Jack Domet, who have spent over three decades in the field, present a timely, clear-eyed, and actionable framework that will empower senior executives and board members to become stewards of their companies' cybersecurity activities. This includes: Understanding cyber risks and how best to control them Planning and preparing for a crisis--and leading in its aftermath Making cybersecurity a companywide initiative and responsibility Drawing attention to the nontechnical dynamics that influence the effectiveness of cybersecurity measures Aligning the board, executive leadership, and cybersecurity teams on priorities Filled with tools, best practices, and strategies, A Leader's Guide to Cybersecurity will help boards navigate this seemingly daunting but extremely necessary transition.



Maritime Cybersecurity

Author : Steven D Shepard, PhD

Publisher :

Page : 252 pages

File Size : 10,66 MB

Release : 2020-09-02

Category :

ISBN :

Get eBook

Book Description

The maritime industry is thousands of years old. The shipping industry, which includes both ships and ports, follows practices that are as old as the industry itself, yet relies on decades-old information technologies to protect its assets. Computers have only existed for the last 60 years and computer networks for 40. Today, we find an industry with rich tradition, colliding with new types of threats, vulnerabilities, and exposures. This book explores cybersecurity aspects of the maritime transportation sector and the threat landscape that seeks to do it harm.



The Manager’s Guide to Cybersecurity Law

Author : Tari Schreider, SSCP, CISM, C|CISO, ITIL Foundation

Publisher : Rothstein Publishing

Page : 135 pages

File Size : 13,96 MB

Release : 2017-02-01

Category : Business & Economics

ISBN : 1944480307

Get eBook

Book Description

In today’s litigious business world, cyber-related matters could land you in court. As a computer security professional, you are protecting your data, but are you protecting your company? While you know industry standards and regulations, you may not be a legal expert. Fortunately, in a few hours of reading, rather than months of classroom study, Tari Schreider’s The Manager’s Guide to Cybersecurity Law: Essentials for Today’s Business, lets you integrate legal issues into your security program. Tari Schreider, a board-certified information security practitioner with a criminal justice administration background, has written a much-needed book that bridges the gap between cybersecurity programs and cybersecurity law. He says, “My nearly 40 years in the fields of cybersecurity, risk management, and disaster recovery have taught me some immutable truths. One of these truths is that failure to consider the law when developing a cybersecurity program results in a protective façade or false sense of security.” In a friendly style, offering real-world business examples from his own experience supported by a wealth of court cases, Schreider covers the range of practical information you will need as you explore – and prepare to apply – cybersecurity law. His practical, easy-to-understand explanations help you to: Understand your legal duty to act reasonably and responsibly to protect assets and information. Identify which cybersecurity laws have the potential to impact your cybersecurity program. Upgrade cybersecurity policies to comply with state, federal, and regulatory statutes. Communicate effectively about cybersecurity law with corporate legal department and counsel. Understand the implications of emerging legislation for your cybersecurity program. Know how to avoid losing a cybersecurity court case on procedure – and develop strategies to handle a dispute out of court. Develop an international view of cybersecurity and data privacy – and international legal frameworks. Schreider takes you beyond security standards and regulatory controls to ensure that your current or future cybersecurity program complies with all laws and legal jurisdictions. Hundreds of citations and references allow you to dig deeper as you explore specific topics relevant to your organization or your studies. This book needs to be required reading before your next discussion with your corporate legal department.



Navigating the Cybersecurity Career Path

Author : Helen E. Patton

Publisher : John Wiley & Sons

Page : 336 pages

File Size : 33,2 MB

Release : 2021-10-29

Category : Computers

ISBN : 1119833434

Get eBook

Book Description

Land the perfect cybersecurity role—and move up the ladder—with this insightful resource Finding the right position in cybersecurity is challenging. Being successful in the profession takes a lot of work. And becoming a cybersecurity leader responsible for a security team is even more difficult. In Navigating the Cybersecurity Career Path, decorated Chief Information Security Officer Helen Patton delivers a practical and insightful discussion designed to assist aspiring cybersecurity professionals entering the industry and help those already in the industry advance their careers and lead their first security teams. In this book, readers will find: Explanations of why and how the cybersecurity industry is unique and how to use this knowledge to succeed Discussions of how to progress from an entry-level position in the industry to a position leading security teams and programs Advice for every stage of the cybersecurity career arc Instructions on how to move from single contributor to team leader, and how to build a security program from scratch Guidance on how to apply the insights included in this book to the reader's own situation and where to look for personalized help A unique perspective based on the personal experiences of a cybersecurity leader with an extensive security background Perfect for aspiring and practicing cybersecurity professionals at any level of their career, Navigating the Cybersecurity Career Path is an essential, one-stop resource that includes everything readers need to know about thriving in the cybersecurity industry.



Information Security Governance

Author : W. Krag Brotby

Publisher : ISACA

Page : 81 pages

File Size : 45,18 MB

Release : 2007

Category : Business enterprises

ISBN : 1933284730

Get eBook

Book Description



Cybersecurity for Executives

Author : Gregory J. Touhill

Publisher : John Wiley & Sons

Page : 412 pages

File Size : 19,98 MB

Release : 2014-06-09

Category : Technology & Engineering

ISBN : 1118908805

Get eBook

Book Description

Practical guide that can be used by executives to make well-informed decisions on cybersecurity issues to better protect their business Emphasizes, in a direct and uncomplicated way, how executives can identify, understand, assess, and mitigate risks associated with cybersecurity issues Covers 'What to Do When You Get Hacked?' including Business Continuity and Disaster Recovery planning, Public Relations, Legal and Regulatory issues, and Notifications and Disclosures Provides steps for integrating cybersecurity into Strategy; Policy and Guidelines; Change Management and Personnel Management Identifies cybersecurity best practices that executives can and should use both in the office and at home to protect their vital information



Cyber Mayday and the Day After

Author : Daniel Lohrmann

Publisher : John Wiley & Sons

Page : 259 pages

File Size : 17,52 MB

Release : 2021-11-16

Category : Business & Economics

ISBN : 1119835305

Get eBook

Book Description

Successfully lead your company through the worst crises with this first-hand look at emergency leadership Cyber security failures made for splashy headlines in recent years, giving us some of the most spectacular stories of the year. From the Solar Winds hack to the Colonial Pipeline ransomware event, these incidents highlighted the centrality of competent crisis leadership. Cyber Mayday and the Day After offers readers a roadmap to leading organizations through dramatic emergencies by mining the wisdom of C-level executives from around the globe. It’s loaded with interviews with managers and leaders who've been through the crucible and survived to tell the tale. From former FBI agents to Chief Information Security Officers, these leaders led their companies and agencies through the worst of times and share their hands-on wisdom. In this book, you’ll find out: What leaders wish they'd known before an emergency and how they've created a crisis game plan for future situations How executive-level media responses can maintain – or shatter – consumer and public trust in your firm How to use communication, coordination, teamwork, and partnerships with vendors and law enforcement to implement your crisis response Cyber Mayday and the Day After is a must-read experience that offers managers, executives, and other current or aspiring leaders a first-hand look at how to lead others through rapidly evolving crises.



The CERT Guide to Insider Threats

Author : Dawn M. Cappelli

Publisher : Addison-Wesley

Page : 431 pages

File Size : 34,50 MB

Release : 2012-01-20

Category : Computers

ISBN : 013290604X

Get eBook

Book Description

Since 2001, the CERT® Insider Threat Center at Carnegie Mellon University’s Software Engineering Institute (SEI) has collected and analyzed information about more than seven hundred insider cyber crimes, ranging from national security espionage to theft of trade secrets. The CERT® Guide to Insider Threats describes CERT’s findings in practical terms, offering specific guidance and countermeasures that can be immediately applied by executives, managers, security officers, and operational staff within any private, government, or military organization. The authors systematically address attacks by all types of malicious insiders, including current and former employees, contractors, business partners, outsourcers, and even cloud-computing vendors. They cover all major types of insider cyber crime: IT sabotage, intellectual property theft, and fraud. For each, they present a crime profile describing how the crime tends to evolve over time, as well as motivations, attack methods, organizational issues, and precursor warnings that could have helped the organization prevent the incident or detect it earlier. Beyond identifying crucial patterns of suspicious behavior, the authors present concrete defensive measures for protecting both systems and data. This book also conveys the big picture of the insider threat problem over time: the complex interactions and unintended consequences of existing policies, practices, technology, insider mindsets, and organizational culture. Most important, it offers actionable recommendations for the entire organization, from executive management and board members to IT, data owners, HR, and legal departments. With this book, you will find out how to Identify hidden signs of insider IT sabotage, theft of sensitive information, and fraud Recognize insider threats throughout the software development life cycle Use advanced threat controls to resist attacks by both technical and nontechnical insiders Increase the effectiveness of existing technical security tools by enhancing rules, configurations, and associated business processes Prepare for unusual insider attacks, including attacks linked to organized crime or the Internet underground By implementing this book’s security practices, you will be incorporating protection mechanisms designed to resist the vast majority of malicious insider attacks.



Cybersecurity Career Guide

Author : Alyssa Miller

Publisher : Simon and Schuster

Page : 198 pages

File Size : 17,86 MB

Release : 2022-07-26

Category : Computers

ISBN : 1638350639

Get eBook

Book Description

Kickstart a career in cybersecurity by adapting your existing technical and non-technical skills. Author Alyssa Miller has spent fifteen years in cybersecurity leadership and talent development, and shares her unique perspective in this revealing industry guide. In Cybersecurity Career Guide you will learn: Self-analysis exercises to find your unique capabilities and help you excel in cybersecurity How to adapt your existing skills to fit a cybersecurity role Succeed at job searches, applications, and interviews to receive valuable offers Ways to leverage professional networking and mentoring for success and career growth Building a personal brand and strategy to stand out from other applicants Overcoming imposter syndrome and other personal roadblocks Cybersecurity Career Guide unlocks your pathway to becoming a great security practitioner. You’ll learn how to reliably enter the security field and quickly grow into your new career, following clear, practical advice that’s based on research and interviews with hundreds of hiring managers. Practical self-analysis exercises identify gaps in your resume, what makes you valuable to an employer, and what you want out of your career in cyber. You’ll assess the benefits of all major professional qualifications, and get practical advice on relationship building with mentors. About the technology Do you want a rewarding job in cybersecurity? Start here! This book highlights the full range of exciting security careers and shows you exactly how to find the role that’s perfect for you. You’ll go through all the steps—from building the right skills to acing the interview. Author and infosec expert Alyssa Miller shares insights from fifteen years in cybersecurity that will help you begin your new career with confidence. About the book Cybersecurity Career Guide shows you how to turn your existing technical skills into an awesome career in information security. In this practical guide, you’ll explore popular cybersecurity jobs, from penetration testing to running a Security Operations Center. Actionable advice, self-analysis exercises, and concrete techniques for building skills in your chosen career path ensure you’re always taking concrete steps towards getting hired. What's inside Succeed at job searches, applications, and interviews Building your professional networking and finding mentors Developing your personal brand Overcoming imposter syndrome and other roadblocks About the reader For readers with general technical skills who want a job in cybersecurity. About the author Alyssa Miller has fifteen years of experience in the cybersecurity industry, including penetration testing, executive leadership, and talent development. Table of Contents PART 1 EXPLORING CYBERSECURITY CAREERS 1 This thing we call cybersecurity 2 The cybersecurity career landscape 3 Help wanted, skills in a hot market PART 2 PREPARING FOR AND MASTERING YOUR JOB SEARCH 4 Taking the less traveled path 5 Addressing your capabilities gap 6 Resumes, applications, and interviews PART 3 BUILDING FOR LONG-TERM SUCCESS 7 The power of networking and mentorship 8 The threat of impostor syndrome 9 Achieving success