LEADER 03772oam 2200541Mu 450 001 9910688556703321 005 20190620101716.0 010 $a1-000-01193-3 010 $a1-000-00509-7 010 $a0-415-01546-4 010 $a0-429-28965-0 035 $a(CKB)4100000008339379 035 $a(MiAaPQ)EBC5781400 035 $a(OCoLC)1104079230 035 $a(OCoLC-P)1104079230 035 $a(FlBoTFG)9780429289651 035 $a(OCoLC)1317380424 035 $a(OCoLC-P)1317380424 035 $a(CaSebORM)9781000011937 035 $a(EXLCZ)994100000008339379 100 $a20190615d2019 uy 0 101 0 $aeng 135 $aurcnu---unuuu 181 $ctxt$2rdacontent 182 $cc$2rdamedia 183 $acr$2rdacarrier 200 10$aVulnerability Management 205 $a2nd ed. 210 $aMilton $cAuerbach Publications$d2019 215 $a1 online resource (330 pages) 300 $aDescription based upon print version of record. 311 $a1-03-240143-5 311 $a0-367-23514-5 327 $aThe vulnerability experience -- Program and organization -- Technology -- Selecting technology -- Process -- Execution, reporting, and analysis -- Planning -- Strategic vulnerabilities -- Managing vulnerabilities in the cloud. 330 $aVulnerability management (VM) has been around for millennia. Cities, tribes, nations, and corporations have all employed its principles. The operational and engineering successes of any organization depend on the ability to identify and remediate a vulnerability that a would-be attacker might seek to exploit. What were once small communities became castles. Cities had fortifications and advanced warning systems. All such measures were the result of a group recognizing their vulnerabilities and addressing them in different ways. Today, we identify vulnerabilities in our software systems, infrastructure, and enterprise strategies. Those vulnerabilities are addressed through various and often creative means. Vulnerability Management demonstrates a proactive approach to the discipline. Illustrated with examples drawn from Park Foreman's more than three decades of multinational experience, the book demonstrates how much easier it is to manage potential weaknesses than to clean up after a violation. Covering the diverse realms that CISOs need to know and the specifics applicable to singular areas of departmental responsibility, he provides both the strategic vision and action steps needed to prevent the exploitation of IT security gaps, especially those that are inherent in a larger organization. Completely updated, the second edition provides a fundamental understanding of technology risks--including a new chapter on cloud vulnerabilities and risk management--from an interloper's perspective. This book is a guide for security practitioners, security or network engineers, security officers, and CIOs seeking understanding of VM and its role in the organization. To serve various audiences, it covers significant areas of VM. Chapters on technology provide executives with a high-level perspective of what is involved. Other chapters on process and strategy, although serving the executive well, provide engineers and security managers with perspective on the role of VM technology and processes in the success of the enterprise. 606 $aInformation technology$xSecurity measures 606 $aComputer security 615 0$aInformation technology$xSecurity measures. 615 0$aComputer security. 676 $a005.8 676 $a658.478 700 $aForeman$b Park$01353072 801 0$bOCoLC-P 801 1$bOCoLC-P 906 $aBOOK 912 $a9910688556703321 996 $aVulnerability Management$93220204 997 $aUNINA