حفاظت، پشتیبانی و نگهداری از دادههای رایانهای، اطلاعات مهم، برنامههای حساس، نرمافزارهای مورد نیاز و یا هر آنچه که در حافظه جانبی رایانه مورد توجه بوده و با اهمیت میباشد، امنیت رایانهای نامیده میشود. تفکر امنیت در شبکه برای دستیابی به سه عامل مهم است که با یک دیگر مثلث امنیتی را تشکیل می دهند. این عوامل عبارتند از راز داری و امانت داری (Confidentiality)، یکپارچگی (Integrity) و در نهایت در دسترس بودن همیشگی (Availability). این سه عامل (CIA) اصول اساسی امنیت اطلاعات – در شبکه و یا بیرون آن – را تشکیل می دهند بگونه ای که تمامی تمهیدات لازمی که برای امنیت شبکه اتخاذ میشود و یا تجهیزاتی که ساخته می شوند، همگی ناشی از نیاز به اعمال این سه پارامتر در محیط های نگهداری و تبادل اطلاعات است.
Defensive Security Handbook: Best Practices for Securing Infrastructure
حجم: 28 مگابایت
دانلود
رمز فایل: technet24.ir
Defensive Security Handbook: Best Practices for Securing Infrastructure
Author: Amanda Berlin, Lee Brotherston
Length: 268 pages
Edition: 1
Language: English
Publisher: O’Reilly Media
Publication Date: 2017-04-03
ISBN-10: B06Y18XC5Y
Book Description
Despite the increase of high-profile hacks, record-breaking data leaks, and ransomware attacks, many organizations don’t have the budget to establish or outsource an information security (InfoSec) program, forcing them to learn on the job. For companies obliged to improvise, this pragmatic guide provides a security-101 handbook with steps, tools, processes, and ideas to help you drive maximum-security improvement at little or no cost.
Each chapter in this book provides step-by-step instructions for dealing with a specific issue, including breaches and disasters, compliance, network infrastructure and password management, vulnerability scanning, and penetration testing, among others. Network engineers, system administrators, and security professionals will learn tools and techniques to help improve security in sensible, manageable chunks.
Learn fundamentals of starting or redesigning an InfoSec program
Create a base set of policies, standards, and procedures
Plan and design incident response, disaster recovery, compliance, and physical security
Bolster Microsoft and Unix systems, network infrastructure, and password management
Use segmentation practices and designs to compartmentalize your network
Explore automated process and tools for vulnerability management
Securely develop code to reduce exploitable errors
Understand basic penetration testing concepts through purple teaming
Delve into IDS, IPS, SOC, logging, and monitoring
Table of Contents
Chapter 1 Creating a Security Program
Chapter 2 Asset Management & Documentation
Chapter 3 Policies
Chapter 4 Standards & Procedures
Chapter 5 User Education
Chapter 6 Incident Response
Chapter 7 Disaster Recovery
Chapter 8 Industry Compliance Standards & Frameworks
Chapter 9 Physical Security
Chapter 10 Microsoft Windows Infrastructure
Chapter 11 Unix Application Servers
Chapter 12 Endpoints
Chapter 13 Password Management & Multi-Factor Authentication
Chapter 14 Network Infrastructure
Chapter 15 Segmentation
Chapter 16 Vulnerability Management
Chapter 17 Development
Chapter 18 Purple Teaming
Chapter 19 IDS & IPS
Chapter 20 Logging and Monitoring
Chapter 21 The Extra Mile
Appendix A User Education Templates