Building an Intelligence-Led Security Program

Building an Intelligence-Led Security Program

4 (2 ratings by Goodreads)
By (author) 

Free delivery worldwide

Available. Dispatched from the UK in 2 business days
When will my order arrive?


As recently as five years ago, securing a network meant putting in a firewall, intrusion detection system, and installing antivirus software on the desktop. Unfortunately, attackers have grown more nimble and effective, meaning that traditional security programs are no longer effective.

Today's effective cyber security programs take these best practices and overlay them with intelligence. Adding cyber threat intelligence can help security teams uncover events not detected by traditional security platforms and correlate seemingly disparate events across the network. Properly-implemented intelligence also makes the life of the security practitioner easier by helping him more effectively prioritize and respond to security incidents.

The problem with current efforts is that many security practitioners don't know how to properly implement an intelligence-led program, or are afraid that it is out of their budget. Building an Intelligence-Led Security Program is the first book to show how to implement an intelligence-led program in your enterprise on any budget. It will show you how to implement a security information a security information and event management system, collect and analyze logs, and how to practice real cyber threat intelligence. You'll learn how to understand your network in-depth so that you can protect it in the best possible way.
show more

Product details

  • Paperback | 200 pages
  • 193.04 x 233.68 x 17.78mm | 340.19g
  • Rockland, MA, United States
  • English
  • Illustrated; Illustrations, unspecified
  • 0128021454
  • 9780128021453
  • 1,251,977

Table of contents

I. Defining Intelligence

Chapter 1: Understanding the Threat

Chapter 2: What is Intelligence?

Chapter 3: Creating an Intelligence Model for Network Security

II. Applying Intelligence toYour Network

Chapter 4: Gathering Intelligence

Chapter 5: Internal Intelligence Sources

Chapter 6: External Intelligence Sources

Chapter 7: Internal and External Intelligence

III. Using Outside Resources

Chapter 8: CERTs, ISACs, and Other Threat Sources

Chapter 9: Advanced Intelligence Capabilities
show more

About Allan Liska

Allan Liska has more than 15 years of experience in the world of information security. Mr. Liska has worked both as a security practitioner and an ethical hacker, so he is familiar with both sides of the security aisle and, through his work at Symantec and iSIGHT Partners, has helped countless organizations improve their security posture using more effective intelligence. In addition to security experience, Mr. Liska also authored the book The Practice of Network Security and contributed the security-focused chapters to The Apache Administrators Handbook.
show more

Rating details

2 ratings
4 out of 5 stars
5 0% (0)
4 100% (2)
3 0% (0)
2 0% (0)
1 0% (0)
Book ratings by Goodreads
Goodreads is the world's largest site for readers with over 50 million reviews. We're featuring millions of their reader ratings on our book pages to help you find your new favourite book. Close X