Building an Intelligence-Led Security Program
Today's effective cyber security programs take these best practices and overlay them with intelligence. Adding cyber threat intelligence can help security teams uncover events not detected by traditional security platforms and correlate seemingly disparate events across the network. Properly-implemented intelligence also makes the life of the security practitioner easier by helping him more effectively prioritize and respond to security incidents.
The problem with current efforts is that many security practitioners don't know how to properly implement an intelligence-led program, or are afraid that it is out of their budget. Building an Intelligence-Led Security Program is the first book to show how to implement an intelligence-led program in your enterprise on any budget. It will show you how to implement a security information a security information and event management system, collect and analyze logs, and how to practice real cyber threat intelligence. You'll learn how to understand your network in-depth so that you can protect it in the best possible way.
- Paperback | 200 pages
- 193.04 x 233.68 x 17.78mm | 340.19g
- 01 Jan 2015
- Syngress Media,U.S.
- Rockland, MA, United States
- Illustrated; Illustrations, unspecified
Other books in this series
26 Jan 2014
01 Jun 2011
01 Jun 2016
13 May 2014
16 Dec 2015
31 Jul 2012
14 Jan 2013
20 Nov 2014
29 May 2009
Table of contents
Chapter 1: Understanding the Threat
Chapter 2: What is Intelligence?
Chapter 3: Creating an Intelligence Model for Network Security
II. Applying Intelligence toYour Network
Chapter 4: Gathering Intelligence
Chapter 5: Internal Intelligence Sources
Chapter 6: External Intelligence Sources
Chapter 7: Internal and External Intelligence
III. Using Outside Resources
Chapter 8: CERTs, ISACs, and Other Threat Sources
Chapter 9: Advanced Intelligence Capabilities
About Allan Liska