Schoenfield | Insider's Guide to Cyber Security Architecture | E-Book | sack.de
E-Book

E-Book, Englisch, 250 Seiten

Schoenfield Insider's Guide to Cyber Security Architecture


1. Auflage 2016
ISBN: 978-1-4987-4200-9
Verlag: CRC Press
Format: PDF
 Kopierschutz: Adobe DRM (»Systemvoraussetzungen)

E-Book, Englisch, 250 Seiten

ISBN: 978-1-4987-4200-9
Verlag: CRC Press
Format: PDF
 Kopierschutz: Adobe DRM (»Systemvoraussetzungen)

This book is filled with techniques, tips, and tricks that secure software architects and developers can apply directly. From assessing the sensitivity of data in a system through actually getting requirements implemented, this book offers readers practical, how-to advice in small, focused and directly applicable gems of insight, knowledge, and wisdom from secure software principal architect Brook S.E. Schoenfield. The book is organized by applicability of topics that include getting security architecture started, helping architects be effective, working with partner teams, assessing systems, driving security requirements to completion, and programmatic hints.

Schoenfield Insider's Guide to Cyber Security Architecture jetzt bestellen!

Autoren/Hrsg.

Schoenfield, Brook S. E.

Fachgebiete

Weitere Infos & Material

Introduction. What Is This Thing Called "Security Architecture"?. What Is Security Assessment. Architecture Risk Assessment. Threat Modeling. ATASM. Background knowledge: The Three S’s. Architecture. Threats. Attack Surfaces. Mitigations. Requirements. Security Architecture Programs. Secure Development Lifecycle. Tips and Tricks. Relationships Are (Almost) Everything. Know the Policies and Standards. Start With Context. Work Holistically. Assessment is Fractal and Recursive. Don’t Get Sidetracked By Presenting Problems. The Early Requirement Gets the Worm. Break the Kill Chain to Mitigate. Probability Can Be Reduced To Booleans. Becoming Part of a Team. We Are Not Cops. Playing a Long Game. Conflict Builds Trust. Give Risks to Decision Makers. Making Friends with Exceptions. Interjections and Release Scheduling. What to Do When Brought in Late. Transparency!. Post Threat Models. The Rule of the Most Sensitive. External to Internal? Build a mini-DMZ. Peer Review Rules. When Policies Make Sense, When They Don’t. Working with Eyeball-to-Eyeball Security. Measuring Success. Measuring Architect Performance.

Brook S.E. Schoenfield is Intel Security Group's Master Principal Architect for Product Security. He provides technical leadership for all aspects of product security across an Intel Security Group division's broad product portfolio. Previously, he was Autodesk Inc.'s Enterprise Security Architect, leading technical IT security strategy. As Cisco Systems’ Senior Security Architect, he was the technical lead for SaaS product security for the enterprise. Mr. Schoenfield has been a speaker at conferences including RSA, Software Professionals, SANS What Works Summits, and many others, presenting in his areas of expertise: SaaS security, software security, information security risk, web security, Service Oriented Architectures, and identity management. He has been published by CRC Press, SANS Institute, Cisco, and IEEE.

Ihre Fragen, Wünsche oder Anmerkungen
Vorname*
Nachname*
Ihre E-Mail-Adresse*
Kundennr.
Ihre Nachricht*
Lediglich mit * gekennzeichnete Felder sind Pflichtfelder.
Wenn Sie die im Kontaktformular eingegebenen Daten durch Klick auf den nachfolgenden Button übersenden, erklären Sie sich damit einverstanden, dass wir Ihr Angaben für die Beantwortung Ihrer Anfrage verwenden. Selbstverständlich werden Ihre Daten vertraulich behandelt und nicht an Dritte weitergegeben. Sie können der Verwendung Ihrer Daten jederzeit widersprechen. Das Datenhandling bei Sack Fachmedien erklären wir Ihnen in unserer Datenschutzerklärung.