Practical Vulnerability Management (Paperback)

Magnusson, Andrew

買這商品的人也買了...

商品描述

A hands-on guide to improving an organization's computer security and developing scanning tools on a budget.

Practical Vulnerability Management discusses the components of a vulnerability management program and shows the reader how to build a free or low-cost system to automatically handle the repetitive aspects of vulnerability management. Vulnerability management is a critical and sometimes neglected aspect of information security. It consists of two main parts: awareness and action. First, the security practitioner must be aware of the vulnerabilities that exist in an organization's systems and understand how dangerous each one is. Second, that information must feed into an ongoing process of addressing vulnerabilities by updating the vulnerable systems or otherwise mitigating their severity.

商品描述(中文翻譯)

一本實用的指南,教你如何改善組織的電腦安全並在有限預算下開發掃描工具。

《實用漏洞管理》討論漏洞管理計劃的組成部分,並向讀者展示如何建立一個免費或低成本的系統,自動處理漏洞管理中重複性的工作。漏洞管理是信息安全中一個重要但有時被忽視的方面。它包含兩個主要部分:意識和行動。首先,安全從業人員必須了解組織系統中存在的漏洞,並理解每個漏洞的危險程度。其次,這些信息必須融入一個持續的過程,通過更新易受攻擊的系統或以其他方式減輕其嚴重性來解決漏洞。

作者簡介

Andrew Magnusson has been working in the information security field since 2002, in areas ranging from firewall configuration to security consulting to managing SOC2 compliance. As a consultant deploying enterprise vulnerability management tools he has seen how an organization's vulnerability management practices, or lack thereof, affects their overall information security posture.

作者簡介(中文翻譯)

Andrew Magnusson自2002年以來一直在資訊安全領域工作,範圍從防火牆配置到安全諮詢,再到管理SOC2合規性。作為一名部署企業漏洞管理工具的顧問,他見證了組織的漏洞管理實踐或其缺乏如何影響其整體資訊安全狀態。