LEADER 03483nam  2200577   450 
001 9910463774803321
005 20200520144314.0
010   $a0-12-802145-4
010   $a0-12-802370-8
035   $a(CKB)2670000000585899
035   $a(CaPaEBR)ebrary10999972
035   $a(SSID)ssj0001454827
035   $a(PQKBManifestationID)11864146
035   $a(PQKBTitleCode)TC0001454827
035   $a(PQKBWorkID)11498262
035   $a(PQKB)10221892
035   $a(MiAaPQ)EBC1888751
035   $a(CaSebORM)9780128021453
035   $a(Au-PeEL)EBL1888751
035   $a(CaPaEBR)ebr10999972
035   $a(CaONFJC)MIL679360
035   $a(OCoLC)898326670
035   $a(EXLCZ)992670000000585899
100   $a20150110h20152015  uy             0
101 0 $aeng
135   $aurcnu||||||||
181   $ctxt
182   $cc
183   $acr
200 10$aBuilding an intelligence-led security program /$fAllan Liska ; Tim Gallo, technical editor
205   $aFirst edition.
210  1$aWaltham, Massachusetts :$cSyngress,$d2015.
210  4$dİ2015
215   $a1 online resource (192 p.) 
300   $aBibliographic Level Mode of Issuance: Monograph
311   $a1-322-48078-8 
320   $aIncludes bibliographical references at the end of each chapters and index.
330   $aAs recently as five years ago, securing a network meant putting in a firewall, intrusion detection system, and installing antivirus software on the desktop. Unfortunately, attackers have grown more nimble and effective, meaning that traditional security programs are no longer effective. Today's effective cyber security programs take these best practices and overlay them with intelligence. Adding cyber threat intelligence can help security teams uncover events not detected by traditional security platforms and correlate seemingly disparate events across the network. Properly-implemented intelligence also makes the life of the security practitioner easier by helping him more effectively prioritize and respond to security incidents. The problem with current efforts is that many security practitioners don't know how to properly implement an intelligence-led program, or are afraid that it is out of their budget. Building an Intelligence-Led Security Program is the first book to show how to implement an intelligence-led program in your enterprise on any budget. It will show you how to implement a security information a security information and event management system, collect and analyze logs, and how to practice real cyber threat intelligence. You'll learn how to understand your network in-depth so that you can protect it in the best possible way. Provides a roadmap and direction on how to build an intelligence-led information security program to protect your company. Learn how to understand your network through logs and client monitoring, so you can effectively evaluate threat intelligence. Learn how to use popular tools such as BIND, SNORT, squid, STIX, TAXII, CyBox, and splunk to conduct network intelligence.
606   $aComputer networks$xSecurity measures
608   $aElectronic books.
615  0$aComputer networks$xSecurity measures.
676   $a658.478
700   $aLiska$b Allan$0943565
702   $aGallo$b Tim
801  0$bMiAaPQ
801  1$bMiAaPQ
801  2$bMiAaPQ
906   $aBOOK
912   $a9910463774803321
996   $aBuilding an intelligence-led security program$92133625
997   $aUNINA