Cover image for Agile Security Operations

Agile Security Operations

Author Hinne Hettema
Release Date: 2022/02/01
ISBN: 9781801815512
Topic:
0%
20
Chapters
0-1
Hours read
0k
Total Words
    Start Reading Now    
       Add to Wishlist       
View table of contents

Get to grips with security operations through incident response, the ATT&CK framework, active defense, and agile threat intelligence

Key Features

  • Explore robust and predictable security operations based on measurable service performance
  • Learn how to improve the security posture and work on security audits
  • Discover ways to integrate agile security operations into development and operations

Book Description

Agile security operations allow organizations to survive cybersecurity incidents, deliver key insights into the security posture of an organization, and operate security as an integral part of development and operations. It is, deep down, how security has always operated at its best.

Agile Security Operations will teach you how to implement and operate an agile security operations model in your organization. The book focuses on the culture, staffing, technology, strategy, and tactical aspects of security operations. You'll learn how to establish and build a team and transform your existing team into one that can execute agile security operations. As you progress through the chapters, you'll be able to improve your understanding of some of the key concepts of security, align operations with the rest of the business, streamline your operations, learn how to report to senior levels in the organization, and acquire funding.

By the end of this Agile book, you'll be ready to start implementing agile security operations, using the book as a handy reference.

What you will learn

  • Get acquainted with the changing landscape of security operations
  • Understand how to sense an attacker's motives and capabilities
  • Grasp key concepts of the kill chain, the ATT&CK framework, and the Cynefin framework
  • Get to grips with designing and developing a defensible security architecture
  • Explore detection and response engineering
  • Overcome challenges in measuring the security posture
  • Derive and communicate business values through security operations
  • Discover ways to implement security as part of development and business operations

Who this book is for

This book is for new and established CSOC managers as well as CISO, CDO, and CIO-level decision-makers. If you work as a cybersecurity engineer or analyst, you'll find this book useful. Intermediate-level knowledge of incident response, cybersecurity, and threat intelligence is necessary to get started with the book.

Table of Contents

  1. Agile Security Operations
  2. Contributors
  3. About the author
  4. About the reviewers
  5. Preface
  6. Section 1: Incidence Response: The Heart of Security
  7. Chapter 1: How Security Operations Are Changing
  8. Chapter 2: Incident Response – A Key Capability in Security Operations
  9. Chapter 3: Engineering for Incident Response
  10. Section 2: Defensible Organizations
  11. Chapter 4: Key Concepts in Cyber Defense
  12. Chapter 5: Defensible Architecture
  13. Chapter 6: Active Defense
  14. Chapter 7: How Secure Are You? – Measuring Security Posture
  15. Section 3: Advanced Agile Security Operations
  16. Chapter 8: Red, Blue, and Purple Teaming
  17. Chapter 9: Running and Operating Security Services
  18. Chapter 10: Implementing Agile Threat Intelligence
  19. Appendix
  20. Further reading
  21. Other Books You May Enjoy