LibGuides: TIM-6390: Week 6 Resources

Week 6 Resources

Rational Cybersecurity for Business
Blum, D. (2020). Rational cybersecurity for business: The security leaders' guide to business alignment. Apress.
Read Chapter 8 – Control Access with Minimal Drag On the Business.
This chapter discusses the need for maturity in data governance and IAM as mechanisms for reducing breach risk and maintaining compliance with privacy-related regulations.
Read Chapter 9 – Institute Resilience through Detection, Response, and Recovery.
This chapter discusses the need for a posture that embraces cyber-resilience to afford an organization the ability to manage incident response through the identification of critical business assets, risk scenarios, and contingency planning.
Read Chapter 10 – Create Your Rational Cybersecurity Success Plan.
This chapter details the development of a cybersecurity success plan using a focus on priority, state assessment, identification of stakeholders, the definition of improvement objectives, metrics, and tracking of progress.
Cybersecurity Incident Response: How to Contain, Eradicate, and Recover from Incidents
Rains, T. (2018). Cybersecurity incident response: How to contain, eradicate, and recover from incidents. Apress.
Read Chapter 1 – The Significance of Incident Response.
This chapter emphasizes the need for organizational leadership to be the number-one need and driver of successful incident response.
Read Chapter 3 – Incidence Response Frameworks.
This chapter details how to apply the NIST (SP) 800-61 Computer Security Incident Handling Guide to the incident response planning process.
Cybersecurity Threats, Malware Trends, and Strategies
Rains, T. (2020). Cybersecurity threats, malware trends, and strategies. Packt Publishing.
Read Chapter 3 – Evolution of the Threat Landscape – Malware.
This chapter discusses the sources of data that threat intelligence for Windows comes from, how to identify good threat intelligence, and global malware evolution and trends.
IT Auditing Using Controls to Protect Information Assets
Kegerreis, M., Schiller, M., & Davis, C. (2019). IT auditing using controls to protect information assets (3rd ed.). McGraw-Hill.
Read Chapter 21 – Risk Management.
This chapter discusses the development of a formal risk management process and the risk management lifecycle.