Cliquer sur une vignette pour aller sur Google Books.
|
Chargement... Cracking Security Misconceptions – Untangling Common Myths About Modern Information Securitypar Andrew Peterson
Aucun Actuellement, il n'y a pas de discussions au sujet de ce livre.  apotheon | Dec 14, 2020 |  aucune critique | ajouter une critique
As stories continue to mount about security breaches in organizations and government agencies—such as the 2016 US Department of Justice hack—many people believe there’s really nothing they can do about it. Fact is, you can do quite a bit. In this report, security professional Andrew Peterson addresses several widespread misconceptions about the hacking world so that you can be better prepared to join the fight. You may believe hackers today are too clever and attacks are too sophisticated for you to do anything, or that your organization isn’t worth a hacker’s time. But that isn’t the case. All organizations—from small, owner-operated businesses to large, multinational corporations—own data worth stealing and are potential, and even likely, targets for an attack. If you’re ready to take security seriously, you need to involve everyone in the company, including security and non-security professionals alike. This report provides you with an accurate picture, rather than conjecture or half-truths propagated by the media. Aucune description trouvée dans une bibliothèque |
Discussion en coursAucunCouvertures populaires 
 Google Books — Chargement...GenresAucun genre Classification de la Bibliothèque du CongrèsÉvaluationMoyenne: (4)
Est-ce vous ?Devenez un(e) auteur LibraryThing. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
1
There were several points on which I might disagree with some of Andrew Peterson's commentary on the state and practice of information security in today's world, but I found that I agreed with what he said more often than not -- and even when I disagreed, it was typically not a strong disagreement. In fact, his ability to extract meaningful concepts from the chaotic swirl of information, misinformation, and disinformation in the broad field of information security was quite a bit better than I expected, having been disappointed by books whose authors claimed far greater expertise than Peterson claims in Cracking Security Misconceptions, and some of his points that dig a little deeper than mainstream "best practices" commentary actually read eerily like some of my own articles when I wrote professionally about security. If you have the time and inclination, for instance, compare what he has to say about security standards and checklists with what I have said about the same subject matter in articles I wrote for TechRepublic.
This is a succinct book, organized a bit like the typical "top ten list" style of blog posts (though much more in depth than a typical blog post), but it conveys a surprising weight and breadth of good advice about how to think about security in its short length. Most people who are not security professionals but could benefit from some idea of how to consider the practical realities of information security can gain much from reading this book, and some self-described security professionals I have observed in the past would do themselves a great favor by reading and learning from it as well -- except perhaps those whose entire livelihoods are based on acting as though Peterson's insights are irrelevant or inaccurate, because sometimes feeding a culture of ignorance is more lucrative than actually solving problems. (