The Modern Security Operations Center (Paperback)

Muniz, Joseph, Frost, Moses, Santos, Omar

  • 出版商: Addison Wesley
  • 出版日期: 2021-05-06
  • 售價: $2,200
  • 貴賓價: 9.5$2,090
  • 語言: 英文
  • 頁數: 600
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 0135619858
  • ISBN-13: 9780135619858
  • 相關分類: 資訊安全
  • 立即出貨 (庫存 < 3)

買這商品的人也買了...

商品描述

This is the definitive, vendor-neutral guide to building, maintaining, and operating a modern Security Operations Center (SOC). Written by three leading security and networking experts, it brings together all the technical knowledge professionals need to deliver the right mix of security services to their organizations. The authors introduce the SOC as a service provider, and show how to use your SOC to integrate and transform existing security practices, making them far more effective. Writing for security and network professionals, managers, and other stakeholders, the authors cover:

  • How SOCs have evolved, and today's key considerations in deploying them
  • Key services SOCs can deliver, including organizational risk management, threat modeling, vulnerability assessment, incident response, investigation, forensics, and compliance
  • People and process issues, including training, career development, job rotation, and hiring
  • Centralizing and managing security data more effectively
  • Threat intelligence and threat hunting
  • Incident response, recovery, and vulnerability management
  • Using data orchestration and playbooks to automate and control the response to any situation
  • Advanced tools, including SIEM 2.0
  • The future of SOCs, including AI-Assisted SOCs, machine learning, and training models


Note: This book's lead author, Joseph Mu iz, was also lead author of Security Operations Center: Building, Operating, and Maintaining your SOC (Cisco Press). The Modern Security Operations Center is an entirely new and fully vendor-neutral book.

商品描述(中文翻譯)

這是一本關於建立、維護和運營現代安全運營中心(SOC)的權威、中立的指南。由三位領先的安全和網絡專家撰寫,它匯集了專業人士在組織中提供適當的安全服務所需的所有技術知識。作者們將SOC作為一個服務提供者引入,並展示了如何使用您的SOC來整合和轉變現有的安全實踐,使其更加有效。作者針對安全和網絡專業人員、管理人員和其他利益相關者進行了撰寫,內容包括:

- SOC的演變以及部署SOC時的關鍵考慮因素
- SOC可以提供的關鍵服務,包括組織風險管理、威脅建模、漏洞評估、事件響應、調查、取證和合規性
- 人員和流程問題,包括培訓、職業發展、工作輪換和招聘
- 更有效地集中和管理安全數據
- 威脅情報和威脅狩獵
- 事件響應、恢復和漏洞管理
- 使用數據協調和操作手冊來自動化和控制對任何情況的響應
- 高級工具,包括SIEM 2.0
- SOC的未來,包括AI輔助SOC、機器學習和培訓模型

注意:本書的主要作者Joseph Muñiz也是《安全運營中心:建立、運營和維護您的SOC》(思科出版社)的主要作者。《現代安全運營中心》是一本全新的、完全中立的書籍。