Effective Cybersecurity: A Guide to Using Best Practices and Standards (Paperback)

William Stallings

買這商品的人也買了...

商品描述

 

The Practical, Comprehensive Guide to Applying Cybersecurity Best Practices and Standards in Real Environments

 

 

In Effective Cybersecurity, William Stallings introduces the technology, operational procedures, and management practices needed for successful cybersecurity. Stallings makes extensive use of standards and best practices documents that are often used to guide or mandate cybersecurity implementation. Going beyond these, he offers in-depth tutorials on the “how” of implementation, integrated into a unified framework and realistic plan of action.

 

 
Each chapter contains a clear technical overview, as well as a detailed discussion of action items and appropriate policies. Stallings offers many pedagogical features designed to help readers master the material: clear learning objectives, keyword lists, review questions, and QR codes linking to relevant standards documents and web resources.
 

Effective Cybersecurity aligns with the comprehensive Information Security Forum document “The Standard of Good Practice for Information Security,” extending ISF’s work with extensive insights from ISO, NIST, COBIT, other official standards and guidelines, and modern professional, academic, and industry literature.

• Understand the cybersecurity discipline and the role of standards and best practices
• Define security governance, assess risks, and manage strategy and tactics
• Safeguard information and privacy, and ensure GDPR compliance
• Harden systems across the system development life cycle (SDLC)
• Protect servers, virtualized systems, and storage
• Secure networks and electronic communications, from email to VoIP
• Apply the most appropriate methods for user authentication
• Mitigate security risks in supply chains and cloud environments

This knowledge is indispensable to every cybersecurity professional. Stallings presents it systematically and coherently, making it practical and actionable.
 

商品描述(中文翻譯)

《有效的網路安全》是一本實用且全面的指南,介紹在實際環境中應用網路安全最佳實踐和標準所需的技術、操作程序和管理實踐。作者 William Stallings廣泛使用標準和最佳實踐文件,這些文件通常用於指導或強制執行網路安全實施。除此之外,他還提供了深入的實施教程,並將其整合到統一的框架和實際行動計劃中。

每個章節都包含清晰的技術概述,以及對應的行動項目和適當政策的詳細討論。Stallings提供了許多教學特點,旨在幫助讀者掌握材料:明確的學習目標、關鍵詞列表、複習問題和QR碼,可連結到相關的標準文件和網絡資源。

《有效的網路安全》與全面的Information Security Forum文件《信息安全的良好實踐標準》相一致,並從ISO、NIST、COBIT、其他官方標準和指南以及現代專業、學術和行業文獻中獲得了廣泛的見解。

- 瞭解網路安全學科以及標準和最佳實踐的角色
- 定義安全治理,評估風險,並管理策略和戰術
- 保護信息和隱私,確保遵守GDPR
- 在系統開發生命周期(SDLC)中加強系統
- 保護伺服器、虛擬系統和存儲
- 保護網絡和電子通信,從電子郵件到VoIP
- 應用最適合的用戶身份驗證方法
- 減輕供應鏈和雲環境中的安全風險

這些知識對每個網路安全專業人員都是必不可少的。Stallings以系統和一致的方式呈現,使其實用且可行。