MARC details
| 000 -LEADER |
|---|
| fixed length control field |
03285cam a2200229Ii 4500 |
| INTERNATIONAL STANDARD BOOK NUMBER |
|---|
| ISBN |
148427220X |
| INTERNATIONAL STANDARD BOOK NUMBER |
|---|
| ISBN |
9781484272206 |
| INTERNATIONAL STANDARD BOOK NUMBER |
|---|
| ISBN |
9781484272190 |
| DEWEY DECIMAL CLASSIFICATION NUMBER |
|---|
| Classification number |
LCTK105.59 .R63 2021: DDC:005.8 |
| MAIN ENTRY--AUTHOR NAME |
|---|
| Personal name |
Roberts, Aaron, |
| TITLE STATEMENT |
|---|
| Title |
Cyber threat intelligence : |
| Remainder of title |
the no-nonsense guide for CISOs and Security Managers / |
| Statement of responsibility, etc |
Aaron Roberts |
| Copyright Date |
|---|
| Place of publication |
Berkeley, CA : |
| Name of publisher |
Apress, |
| Year of publication or production |
2021 |
| PHYSICAL DESCRIPTION |
|---|
| Number of Pages |
xv, (207 pages) |
| Other physical details |
illustrations; |
| GENERAL NOTE |
|---|
| General note |
Includes index |
| SUMMARY, ETC. |
|---|
| Summary, etc |
Understand the process of setting up a successful cyber threat intelligence (CTI) practice within an established security team. This book shows you how threat information that has been collected, evaluated, and analyzed is a critical component in protecting your organizations resources. Adopting an intelligence-led approach enables your organization to nimbly react to situations as they develop. Security controls and responses can then be applied as soon as they become available, enabling prevention rather than response. There are a lot of competing approaches and ways of working, but this book cuts through the confusion. Author Aaron Roberts introduces the best practices and methods for using CTI successfully. This book will help not only senior security professionals, but also those looking to break into the industry. You will learn the theories and mindset needed to be successful in CTI. This book covers the cybersecurity wild west, the merits and limitations of structured intelligence data, and how using structured intelligence data can, and should, be the standard practice for any intelligence team. You will understand your organizations risks, based on the industry and the adversaries you are most likely to face, the importance of open-source intelligence (OSINT) to any CTI practice, and discover the gaps that exist with your existing commercial solutions and where to plug those gaps, and much more. You will: Know the wide range of cybersecurity products and the risks and pitfalls aligned with blindly working with a vendor Understand critical intelligence concepts such as the intelligence cycle, setting intelligence requirements, the diamond model, and how to apply intelligence to existing security information Understand structured intelligence (STIX) and why its important, and aligning STIX to ATT&CK and how structured intelligence helps improve final intelligence reporting Know how to approach CTI, depending on your budget Prioritize areas when it comes to funding and the best approaches to incident response, requests for information, or ad hoc reporting Critically evaluate services received from your existing vendors, including what they do well, what they dont do well (or at all), how you can improve on this, the things you should consider moving in-house rather than outsourcing, and the benefits of finding and maintaining relationships with excellent vendors |
| SUBJECT ADDED ENTRY--TOPICAL TERM |
|---|
| Topical Term |
Computer security. |
| ELECTRONIC LOCATION AND ACCESS |
|---|
| Uniform Resource Identifier |
https://rave.ohiolink.edu/ebooks/ebc2/9781484272206 |
| ELECTRONIC LOCATION AND ACCESS |
|---|
| Uniform Resource Identifier |
https://go.ohiolink.edu/goto?url=https://link.springer.com/10.1007/978-1-4842-7220-6 |
| ELECTRONIC LOCATION AND ACCESS |
|---|
| Uniform Resource Identifier |
https://link.springer.com/10.1007/978-1-4842-7220-6 |
| ELECTRONIC LOCATION AND ACCESS |
|---|
| Uniform Resource Identifier |
https://learning.oreilly.com/library/view/~/9781484272206/?ar |
| ADDED ENTRY ELEMENTS (KOHA) |
|---|
| Source of classification or shelving scheme |
Library of Congress Classification |
| Koha item type |
Books |