Secrets of a Cyber Security Architect
暫譯: 網路安全架構師的秘密

Schoenfield, Brook S. E.

Secrets of a Cyber Security Architect
  • 出版商: Auerbach Publication
  • 出版日期: 2023-01-21
  • 售價: $2,070
  • 貴賓價: 9.5$1,967
  • 語言: 英文
  • 頁數: 250
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 1032475021
  • ISBN-13: 9781032475028
  • 相關分類: 資訊安全

    • 海外代購書籍(需單獨結帳)

相關主題

商品描述

Any organization with valuable data has been or will be attacked, probably successfully, at some point and with some damage. And, don't all digitally connected organizations have at least some data that can be considered "valuable"?

Cyber security is a big, messy, multivariate, multidimensional arena. A reasonable "defense-in-depth" requires many technologies; smart, highly skilled people; and deep and broad analysis, all of which must come together into some sort of functioning whole, which is often termed a security architecture. Secrets of a Cyber Security Architect is about security architecture in practice. Expert security architects have dozens of tricks of their trade in their kips. In this book, author Brook S. E. Schoenfield shares his tips and tricks, as well as myriad tried and true bits of wisdom that his colleagues have shared with him.

Creating and implementing a cyber security architecture can be hard, complex, and certainly frustrating work. This book is written to ease this pain and show how to express security requirements in ways that make the requirements more palatable and, thus, get them accomplished. It also explains how to surmount individual, team, and organizational resistance. The book covers:

  • What security architecture is and the areas of expertise a security architect needs in practice

  • The relationship between attack methods and the art of building cyber defenses

  • Why to use attacks and how to derive a set of mitigations and defenses

  • Approaches, tricks, and manipulations proven successful for practicing security architecture

  • Starting, maturing, and running effective security architecture programs

  • Secrets of the trade for the practicing security architecture

  • Tricks to surmount typical problems

Filled with practical insight, Secrets of a Cyber Security Architect is the desk reference every security architect needs to thwart the constant threats and dangers confronting every digitally connected organization.

商品描述(中文翻譯)

任何擁有有價值數據的組織都曾經或將會在某個時刻遭受攻擊,並且可能會成功,造成一定的損害。而且,所有數位連接的組織難道不都至少擁有一些可以被視為「有價值」的數據嗎?

網路安全是一個龐大、複雜、多變數、多維度的領域。合理的「深度防禦」需要多種技術;聰明且技術高超的人才;以及深入且廣泛的分析,這些都必須結合成某種運作的整體,通常稱為安全架構。《網路安全架構師的秘密》是關於實踐中的安全架構。專業的安全架構師在他們的工具箱中擁有數十種行業技巧。在這本書中,作者Brook S. E. Schoenfield分享了他的技巧和竅門,以及他同事們與他分享的無數經驗之談。

創建和實施網路安全架構可能是艱難、複雜且肯定令人沮喪的工作。這本書旨在減輕這種痛苦,並展示如何以更易於接受的方式表達安全需求,從而使這些需求得以實現。它還解釋了如何克服個人、團隊和組織的抵抗。書中涵蓋了:

- 安全架構是什麼,以及安全架構師在實踐中所需的專業領域
- 攻擊方法與建立網路防禦藝術之間的關係
- 為什麼要使用攻擊,以及如何推導出一組緩解措施和防禦
- 在實踐安全架構中被證明成功的方法、技巧和操作
- 開始、成熟和運行有效的安全架構計劃
- 實踐安全架構的行業秘密
- 克服典型問題的技巧

《網路安全架構師的秘密》充滿了實用的見解,是每位安全架構師抵禦每個數位連接組織面臨的持續威脅和危險所需的桌面參考書。

作者簡介

Brook S. E. Schoenfield is the author of Securing Systems: Applied Security Architecture and Threat Models and Chapter 9: Applying the SDL Framework to the Real World, in Core Software Security: Security at the Source. He has been published by CRC Press, SANS Institute, Cisco, SAFECode, and the IEEE. Occasionally, he even posts to his security architecture blog, brookschoenfield.com.

He is the Master Security Architect at a global cyber security consultancy, where he leads the company's secure design services. He has held security architecture leadership positions at high-tech enterprises for nearly 20 years, at which he has trained and coached hundreds of people in their journey to becoming security architects. Several thousand people have taken his participatory threat modeling classes.

Brook has presented and taught at conferences such as RSA, BSIMM, OWASP, and SANS What Works Summits on subjects within security architecture, including threat models, DevOps security, information security risk, and other aspects of secure design and software security.

Brook lives in Montana's Bitterroot Mountains. When he's not thinking about, practicing, writing about, and speaking on secure design and software security, he can be found telemark skiing, hiking, and fly fishing in his beloved mountains, exploring new cooking techniques, or playing various genres of guitar--from jazz to percussive fingerstyle.

作者簡介(中文翻譯)

布魯克·S·E·肖恩菲爾德Securing Systems: Applied Security Architecture and Threat Models的作者,以及Core Software Security: Security at the Source中第九章:將SDL框架應用於現實世界的作者。他的作品曾由CRC Press、SANS Institute、Cisco、SAFECode和IEEE出版。他偶爾會在他的安全架構部落格brookschoenfield.com上發表文章。

他是全球網路安全顧問公司的首席安全架構師,負責領導公司的安全設計服務。他在高科技企業擔任安全架構領導職位近20年,期間培訓和指導了數百人踏上成為安全架構師的旅程。數千人參加過他的參與式威脅建模課程。

布魯克曾在RSA、BSIMM、OWASP和SANS What Works Summit等會議上發表演講和授課,主題涵蓋安全架構中的威脅模型、DevOps安全、資訊安全風險以及安全設計和軟體安全的其他方面。

布魯克居住在蒙大拿州的比特魯特山脈。當他不在思考、實踐、撰寫和演講有關安全設計和軟體安全的內容時,他會在他心愛的山中進行越野滑雪、健行和飛釣,探索新的烹飪技術,或彈奏各種風格的吉他,從爵士樂到打擊指法。

類似商品