Enemy at the water cooler : real-life stories of insider threats and Enterprise Security Management countermeasures / Brian T. Contos.

Format:

Book

Author/Creator:

Contos, Brian T.

Language:

English

Subjects (All):

Computer networks--Security measures.

Computer networks.

Computer security.

Hackers.

Physical Description:

1 online resource (290 p.)

Edition:

1st edition

Place of Publication:

Rockland, MA : Syngress, c2006.

Language Note:

English

System Details:

text file

Summary:

The book covers a decade of work with some of the largest commercial and government agencies around the world in addressing cyber security related to malicious insiders (trusted employees, contractors, and partners). It explores organized crime, terrorist threats, and hackers. It addresses the steps organizations must take to address insider threats at a people, process, and technology level. Today's headlines are littered with news of identity thieves, organized cyber criminals, corporate espionage, nation-state threats, and terrorists. They represent the next wave of security threats

Contents:

Cover; Contents; Foreword; Introduction; Part I Background on Cyber Crime, Insider Threats, and ESM; Chapter 1 Cyber Crime and Cyber Criminals 101; About This Chapter; Computer Dependence and Internet Growth; Motivations for Cyber Criminal Activity; Black Markets; Hackers; Script Kiddies; Solitary Cyber Criminals and Exploit Writers for Hire; Organized Crime; Identity Thieves (Impersonation Fraudsters); Competitors; Activist Groups, Nation-State Threats, and Terrorists; Insiders; Tools of the Trade; Chapter 2 Insider Threats; Understanding Who the Insider Is

Psychology of Insider IdentificationInsider Threat Examples from the Media; Insider Threats from a Human Perspective; Insider Threats from a Business Perspective; Insider Threats from a Technical Perspective; Chapter 3 Enterprise Security Management (ESM); ESM in a Nutshell; Key ESM Feature Requirements; Return On Investment (ROI) and Return On Security Investment (ROSI); Alternatives to ESM; Part II Real Life Case Studies; Chapter 4 Imbalanced Security- A Singaporean Data Center; Chapter 5 Comparing Physical & Logical Security Events-A U.S. Government Agency

Chapter 6 Insider with a Conscience- An Austrian RetailerChapter 7 Collaborative Threat-A Telecommunications Company in the U.S.; Chapter 8 Outbreak from Within-A Financial Organization in the U.K.; Chapter 9 Mixing Revenge and Passwords- A Utility Company in Brazil; Chapter 10 Rapid Remediation- A University in the United States; Chapter 11 Suspicious Activity-A Consulting Company in Spain; Chapter 12 Insiders Abridged; Malicious Use of Medical Records; Hosting Pirated Software; Pod-Slurping; Auctioning State Property; Writing Code for Another Company; Outsourced Insiders

Smuggling Gold in Rattus NorvegicusPart III The Extensibility of ESM; Chapter 13 Establishing Chainof- Custody Best Practices with ESM; Disclaimer; Monitoring and Disclosure; Provider Protection Exception; Consent Exception; Computer Trespasser Exception; Court Order Exception; Best Practices; Canadian Best Evidence Rule; Chapter 14 Addressing Both Insider Threats and Sarbanes-Oxley with ESM; Why Sarbanes-Oxley; A Primer on Sarbanes-Oxley; Section 302: Corporate Responsibility for Financial Reports; Section 404: Management Assessment of Internal Controls

Section 409: Real-Time Issuer DisclosuresChapter 15 Incident Management with ESM; Incident Management Basics; Building an Incident Management Program; Chapter 16 Insider Threat Questions and Answers; Introduction; Insider Threat Recap; Question One-Employees; Question Two-Prevention; Question Three-Asset Inventories; Question Four-Log Collection; Question Five-Log Analysis; Question Six- Specialized Insider Content; Question Seven-Physical and Logical Security Convergence; Question Eight-IT Governance; Question Nine-Incident Response; Question Ten-Must Haves

Appendix A Examples of Cyber Crime Prosecutions

Notes:

Description based upon print version of record.

Includes bibliographical references and index.

ISBN:

9786611049324

9781281049322

1281049328

9780080477602

0080477607

OCLC:

183748860