Defensive Security Handbook: Best Practices for Securing Infrastructure, 2nd Edition

  • 12h 11m 38s
  • Amanda Berlin, Lee Brotherston, William F. Reyor III
  • Gildan Media
  • 2024

Despite the increase of high-profile hacks, record-breaking data leaks, and ransomware attacks, many organizations don't have the budget for an information security (InfoSec) program. If you're forced to protect yourself by improvising on the job, this pragmatic guide provides a security-101 handbook with steps, tools, processes, and ideas to help you drive maximum-security improvement at little or no cost.

Each chapter in this book provides step-by-step instructions for dealing with issues such as breaches and disasters, compliance, network infrastructure, password management, vulnerability scanning, penetration testing, and more. Network engineers, system administrators, and security professionals will learn how to use frameworks, tools, and techniques to build and improve their cybersecurity programs.

This book will help you plan and design incident response, disaster recovery, compliance, and physical security; learn and apply basic penetration testing concepts through purple teaming; conduct vulnerability management using automated processes and tools; and use IDS, IPS, SOC, logging, and monitoring. You'll also bolster Microsoft and Unix systems, network infrastructure, and password management; use segmentation practices and designs to compartmentalize your network; and reduce exploitable errors by developing code securely.

About the Author

Amanda Berlin is a highly accomplished network defender and public speaker. She is a principal detection and product manager for Blumira, leading an R&D team dedicated to lowering time to detection and improving the overall security landscape. She has spent over a decade in different areas of technology and sectors providing infrastructure support, triage, and design. Amanda has been involved in implementing a secure PCI process and HIPAA compliance as well as building a comprehensive phishing and awards-based user education program. Amanda serves as the founder and CEO of Mental Health Hackers, a nonprofit dedicated to providing education and guidance to tech workers around mental health topics. Amanda is also the co-host of the "Brakeing Down Security" podcast. On X, she's @InfoSystir.

Lee Brotherston is the founding security engineer at OpsHelm. Having spent more than a decade in Information Security, Lee has worked as an Internal Security resource across many verticals including Finance, Telecommunications, Hospitality, Entertainment, and Government in roles ranging from Engineer to IT Security Manager.

William F. Reyor III, based in Connecticut, is a seasoned threat researcher and director of security at Modus Create. He has a wealth of experience across various technology sectors, providing critical cybersecurity support and innovative solutions. His notable career trajectory includes key roles at prominent organizations (such as The Walt Disney Company and Raytheon Technologies) and Chief Information Security Officer at Fairfield University. His work primarily revolves around investigating threat actor activities, developing automated threat detections, and streamlining incident responses. Additionally, William has made significant contributions to the cybersecurity community as one of the lead organizers for Security BSides Connecticut since 2011.

In this Audiobook

  • Foreword to the First Edition
  • Preface
  • Chapter 1 - Creating a Security Program
  • Chapter 2 - Asset Management and Documentation
  • Chapter 3 - Policies
  • Chapter 4 - Standards and Procedures
  • Chapter 5 - User Education
  • Chapter 6 - Incident Response
  • Chapter 7 - Disaster Recovery
  • Chapter 8 - Industry Compliance Standards and Frameworks
  • Chapter 9 - Physical Security
  • Chapter 10 - Microsoft Windows Infrastructure
  • Chapter 11 - Unix Application Servers
  • Chapter 12 - Endpoints
  • Chapter 13 - Database
  • Chapter 14 - Cloud Infrastructure
  • Chapter 15 - Authentication
  • Chapter 16 - Secure Network Infrastructure
  • Chapter 17 - Segmentation
  • Chapter 18 - Vulnerability Management
  • Chapter 19 - Development
  • Chapter 20 - OSINT and Purple Teaming
  • Chapter 21 - Understanding IDSs and IPSs
  • Chapter 22 - Logging and Monitoring
  • Chapter 23 - The Extra Mile
  • Appendix. User Education Templates
SHOW MORE
FREE ACCESS

YOU MIGHT ALSO LIKE

Course Certified in Cybersecurity (CC): Security Best Practices & Security Awareness
Rating 4.6 of 29 users Rating 4.6 of 29 users (29)
Course Certified in Cybersecurity (CC): Networking & Security Infrastructure
Rating 4.6 of 30 users Rating 4.6 of 30 users (30)
Book Discovering Cybersecurity: A Technical Introduction for the Absolute Beginner