國立虎尾科技大學 |

Cyber Threat Intelligence = The No-Nonsense Guide for CISOs and Security Managers /

紀錄類型:	書目-語言資料,印刷品 : Monograph/item
正題名/作者:	Cyber Threat Intelligence/ by Aaron Roberts.
其他題名:	The No-Nonsense Guide for CISOs and Security Managers /
作者:	Roberts, Aaron.
面頁冊數:	XXII, 207 p. 4 illus.online resource. :
Contained By:	Springer Nature eBook
標題:	Systems and Data Security. -
電子資源:	https://doi.org/10.1007/978-1-4842-7220-6
ISBN:	9781484272206

Cyber Threat Intelligence = The No-Nonsense Guide for CISOs and Security Managers /
Roberts, Aaron.

Cyber Threat IntelligenceThe No-Nonsense Guide for CISOs and Security Managers /[electronic resource] :by Aaron Roberts. - 1st ed. 2021. - XXII, 207 p. 4 illus.online resource.

Chapter 1: The Cybersecurity Wild West -- Chapter 2: The Cybersecurity Wild West -- Chapter 3: Cyber Threat Intelligence–What Does It Mean? -- Chapter 4: Determining What Your Business Needs -- Chapter 5: How Can I Implement This? (No Matter Your Budget) -- Chapter 6: Things to Consider When Implementing CTI -- Chapter 7: The Importance of OSINT -- Chapter 8: I Already Pay for Vendor X. Should I Botherwith CTI? -- Chapter 9: Summary -- Chapter 10: Useful Resources.

Understand the process of setting up a successful cyber threat intelligence (CTI) practice within an established security team. This book shows you how threat information that has been collected, evaluated, and analyzed is a critical component in protecting your organization’s resources. Adopting an intelligence-led approach enables your organization to nimbly react to situations as they develop. Security controls and responses can then be applied as soon as they become available, enabling prevention rather than response. There are a lot of competing approaches and ways of working, but this book cuts through the confusion. Author Aaron Roberts introduces the best practices and methods for using CTI successfully. This book will help not only senior security professionals, but also those looking to break into the industry. You will learn the theories and mindset needed to be successful in CTI. This book covers the cybersecurity wild west, the merits and limitations of structured intelligence data, and how using structured intelligence data can, and should, be the standard practice for any intelligence team. You will understand your organizations’ risks, based on the industry and the adversaries you are most likely to face, the importance of open-source intelligence (OSINT) to any CTI practice, and discover the gaps that exist with your existing commercial solutions and where to plug those gaps, and much more. You will: Know the wide range of cybersecurity products and the risks and pitfalls aligned with blindly working with a vendor Understand critical intelligence concepts such as the intelligence cycle, setting intelligence requirements, the diamond model, and how to apply intelligence to existing security information Understand structured intelligence (STIX) and why it’s important, and aligning STIX to ATT&CK and how structured intelligence helps improve final intelligence reporting Know how to approach CTI, depending on your budget Prioritize areas when it comes to funding and the best approaches to incident response, requests for information, or ad hoc reporting Critically evaluate services received from your existing vendors, including what they do well, what they don’t do well (or at all), how you can improve on this, the things you should consider moving in-house rather than outsourcing, and the benefits of finding and maintaining relationships with excellent vendors.

ISBN: 9781484272206

Standard No.: 10.1007/978-1-4842-7220-6doiSubjects--Topical Terms:

677062
Systems and Data Security.

LC Class. No.: QA76.9.A25

Dewey Class. No.: 005.8

Cyber Threat Intelligence = The No-Nonsense Guide for CISOs and Security Managers /
LDR:04236nam a22003975i 4500 001 1053841
003 DE-He213
005 20210809134253.0
007 cr nn 008mamaa
008 220103s2021 xxu| s |||| 0|eng d
020 $a 9781484272206 $9 978-1-4842-7220-6
024 7 $a 10.1007/978-1-4842-7220-6 $2 doi
035 $a 978-1-4842-7220-6
050 4 $a QA76.9.A25
072 7 $a UR $2 bicssc
072 7 $a COM053000 $2 bisacsh
072 7 $a UR $2 thema
072 7 $a UTN $2 thema
082 0 4 $a 005.8 $2 23
100 1 $a Roberts, Aaron. $e author. $4 aut $4 http://id.loc.gov/vocabulary/relators/aut $3 1358783
245 1 0 $a Cyber Threat Intelligence $h [electronic resource] : $b The No-Nonsense Guide for CISOs and Security Managers / $c by Aaron Roberts.
250 $a 1st ed. 2021.
264 1 $a Berkeley, CA : $b Apress : $b Imprint: Apress, $c 2021.
300 $a XXII, 207 p. 4 illus. $b online resource.
336 $a text $b txt $2 rdacontent
337 $a computer $b c $2 rdamedia
338 $a online resource $b cr $2 rdacarrier
347 $a text file $b PDF $2 rda
505 0 $a Chapter 1: The Cybersecurity Wild West -- Chapter 2: The Cybersecurity Wild West -- Chapter 3: Cyber Threat Intelligence–What Does It Mean? -- Chapter 4: Determining What Your Business Needs -- Chapter 5: How Can I Implement This? (No Matter Your Budget) -- Chapter 6: Things to Consider When Implementing CTI -- Chapter 7: The Importance of OSINT -- Chapter 8: I Already Pay for Vendor X. Should I Botherwith CTI? -- Chapter 9: Summary -- Chapter 10: Useful Resources.
520 $a Understand the process of setting up a successful cyber threat intelligence (CTI) practice within an established security team. This book shows you how threat information that has been collected, evaluated, and analyzed is a critical component in protecting your organization’s resources. Adopting an intelligence-led approach enables your organization to nimbly react to situations as they develop. Security controls and responses can then be applied as soon as they become available, enabling prevention rather than response. There are a lot of competing approaches and ways of working, but this book cuts through the confusion. Author Aaron Roberts introduces the best practices and methods for using CTI successfully. This book will help not only senior security professionals, but also those looking to break into the industry. You will learn the theories and mindset needed to be successful in CTI. This book covers the cybersecurity wild west, the merits and limitations of structured intelligence data, and how using structured intelligence data can, and should, be the standard practice for any intelligence team. You will understand your organizations’ risks, based on the industry and the adversaries you are most likely to face, the importance of open-source intelligence (OSINT) to any CTI practice, and discover the gaps that exist with your existing commercial solutions and where to plug those gaps, and much more. You will: Know the wide range of cybersecurity products and the risks and pitfalls aligned with blindly working with a vendor Understand critical intelligence concepts such as the intelligence cycle, setting intelligence requirements, the diamond model, and how to apply intelligence to existing security information Understand structured intelligence (STIX) and why it’s important, and aligning STIX to ATT&CK and how structured intelligence helps improve final intelligence reporting Know how to approach CTI, depending on your budget Prioritize areas when it comes to funding and the best approaches to incident response, requests for information, or ad hoc reporting Critically evaluate services received from your existing vendors, including what they do well, what they don’t do well (or at all), how you can improve on this, the things you should consider moving in-house rather than outsourcing, and the benefits of finding and maintaining relationships with excellent vendors.
650 1 4 $a Systems and Data Security. $3 677062
650 0 $a Computer security. $3 557122
710 2 $a SpringerLink (Online service) $3 593884
773 0 $t Springer Nature eBook
776 0 8 $i Printed edition: $z 9781484272190
776 0 8 $i Printed edition: $z 9781484272213
856 4 0 $u https://doi.org/10.1007/978-1-4842-7220-6
912 $a ZDB-2-CWD
912 $a ZDB-2-SXPC
950 $a Professional and Applied Computing (SpringerNature-12059)
950 $a Professional and Applied Computing (R0) (SpringerNature-43716)