What do you think?
Rate this book
Building Effective Cybersecurity Programs: A Security Manager’s Handbook
You know by now that your company could not survive without the Internet. Not in today’s market. You are either part of the digital economy or reliant upon it. With critical information assets at risk, your company requires a state-of-the-art cybersecurity program. But how do you achieve the best possible program? Tari Schreider, in Building Effective Cybersecurity A Security Manager’s Handbook, lays out the step-by-step roadmap to follow as you build or enhance your cybersecurity program.
Over 30+ years, Tari Schreider has designed and implemented cybersecurity programs throughout the world, helping hundreds of companies like yours. Building on that experience, he has created a clear roadmap that will allow the process to go more smoothly for you. Building Effective Cybersecurity A Security Manager’s Handbook is organized around the six main steps on the roadmap that will put your cybersecurity program in
Design a Cybersecurity ProgramEstablish a Foundation of GovernanceBuild a Threat, Vulnerability Detection, and Intelligence CapabilityBuild a Cyber Risk Management CapabilityImplement a Defense-in-Depth StrategyApply Service Management to Cybersecurity ProgramsBecause Schreider has researched and analyzed over 150 cybersecurity architectures, frameworks, and models, he has saved you hundreds of hours of research. He sets you up for success by talking to you directly as a friend and colleague, using practical examples. His book helps you
Identify the proper cybersecurity program roles and responsibilities. Classify assets and identify vulnerabilities. Define an effective cybersecurity governance foundation. Evaluate the top governance frameworks and models. Automate your governance program to make it more effective. Integrate security into your application development process. Apply defense-in-depth as a multi-dimensional strategy. Implement a service management approach to implementing countermeasures. With this handbook, you can move forward confidently, trusting that Schreider is recommending the best components of a cybersecurity program for you. In addition, the book provides hundreds of citations and references allow you to dig deeper as you explore specific topics relevant to your organization or your studies.
Over 30+ years, Tari Schreider has designed and implemented cybersecurity programs throughout the world, helping hundreds of companies like yours. Building on that experience, he has created a clear roadmap that will allow the process to go more smoothly for you. Building Effective Cybersecurity A Security Manager’s Handbook is organized around the six main steps on the roadmap that will put your cybersecurity program in
Design a Cybersecurity ProgramEstablish a Foundation of GovernanceBuild a Threat, Vulnerability Detection, and Intelligence CapabilityBuild a Cyber Risk Management CapabilityImplement a Defense-in-Depth StrategyApply Service Management to Cybersecurity ProgramsBecause Schreider has researched and analyzed over 150 cybersecurity architectures, frameworks, and models, he has saved you hundreds of hours of research. He sets you up for success by talking to you directly as a friend and colleague, using practical examples. His book helps you
Identify the proper cybersecurity program roles and responsibilities. Classify assets and identify vulnerabilities. Define an effective cybersecurity governance foundation. Evaluate the top governance frameworks and models. Automate your governance program to make it more effective. Integrate security into your application development process. Apply defense-in-depth as a multi-dimensional strategy. Implement a service management approach to implementing countermeasures. With this handbook, you can move forward confidently, trusting that Schreider is recommending the best components of a cybersecurity program for you. In addition, the book provides hundreds of citations and references allow you to dig deeper as you explore specific topics relevant to your organization or your studies.
469 pages, Kindle Edition
Published October 20, 2017
5 people are currently reading
3 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 of 1 review
February 28, 2018
General approach focuses on “good practice” and what that means to your specific organization. Planning processes are addressed methodically based on the author’s real experience, not just the mindset of higher governing bodies. You’ll be walked through identifying and qualifying threats and risks. And there are plenty of supporting scenarios and models to spark your mindfulness of how security affects everyone and everything in your organization.
Cited publications are relevant to the government as well as private industry. Guidance for developing your programs clearly emphasizes separation of duties, which I’ve always felt was crucial in allowing the people that actually maintain and test the system to be allowed control in addition to those who stamp the approvals. The approach of looking in as an outsider.
The author promotes doing what works best for your specific requirements and focusing on risks that only you can assess and defend against. For managing what is currently on your plate, and reducing redundant paperwork that can hinder your ultimate security objectives. Very well written and power-packed with modern thought processes and proven strategies. Quick and effective read.
Cited publications are relevant to the government as well as private industry. Guidance for developing your programs clearly emphasizes separation of duties, which I’ve always felt was crucial in allowing the people that actually maintain and test the system to be allowed control in addition to those who stamp the approvals. The approach of looking in as an outsider.
The author promotes doing what works best for your specific requirements and focusing on risks that only you can assess and defend against. For managing what is currently on your plate, and reducing redundant paperwork that can hinder your ultimate security objectives. Very well written and power-packed with modern thought processes and proven strategies. Quick and effective read.
Displaying 1 of 1 review