My Account Log in

1 option

Zero Trust Overview and Playbook Introduction : Guidance for Business, Security, and Technology Leaders and Practitioners / Mark Simos, Nikhil Kumar, and Ann Johnson.

O'Reilly Online Learning: Academic/Public Library Edition Available online

View online
Format:
Book
Author/Creator:
Simos, Mark, author.
Kumar, Nikhil, author.
Johnson, Ann, author.
Series:
Zero trust playbook.
Zero trust playbook series
Language:
English
Subjects (All):
Computer security.
Physical Description:
1 online resource (241 pages)
Edition:
First edition.
Place of Publication:
Birmingham, England : Packt Publishing Ltd., [2023]
Summary:
Enhance your cybersecurity and agility with this thorough playbook, featuring actionable guidance, insights, and success criteria from industry experts Key Features Get simple, clear, and practical advice for everyone from CEOs to security operations Organize your Zero Trust journey into role-by-role execution stages Integrate real-world implementation experience with global Zero Trust standards Purchase of the print or Kindle book includes a free eBook in the PDF format Book Description Zero Trust is cybersecurity for the digital era and cloud computing, protecting business assets anywhere on any network. By going beyond traditional network perimeter approaches to security, Zero Trust helps you keep up with ever-evolving threats. The playbook series provides simple, clear, and actionable guidance that fully answers your questions on Zero Trust using current threats, real-world implementation experiences, and open global standards. The Zero Trust playbook series guides you with specific role-by-role actionable information for planning, executing, and operating Zero Trust from the boardroom to technical reality. This first book in the series helps you understand what Zero Trust is, why it's important for you, and what success looks like. You'll learn about the driving forces behind Zero Trust - security threats, digital and cloud transformations, business disruptions, business resilience, agility, and adaptability. The six-stage playbook process and real-world examples will guide you through cultural, technical, and other critical elements for success. By the end of this book, you'll have understood how to start and run your Zero Trust journey with clarity and confidence using this one-of-a-kind series that answers the why, what, and how of Zero Trust! What you will learn Find out what Zero Trust is and what it means to you Uncover how Zero Trust helps with ransomware, breaches, and other attacks Understand which business assets to secure first Use a standards-based approach for Zero Trust See how Zero Trust links business, security, risk, and technology Use the six-stage process to guide your Zero Trust journey Transform roles and secure operations with Zero Trust Discover how the playbook guides each role to success Who this book is for Whether you're a business leader, security practitioner, or technology executive, this comprehensive guide to Zero Trust has something for you. This book provides practical guidance for implementing and managing a Zero Trust strategy and its impact on every role (including yours!). This is the go-to guide for everyone including board members, CEOs, CIOs, CISOs, architects, engineers, IT admins, security analysts, program managers, product owners, developers, and managers. Don't miss out on this essential resource for securing your organization against cyber threats.
Contents:
Cover
Title Page
Copyright and Credits
Dedicated
Foreword
Contributors
Table of Contents
Preface
Chapter 1: Zero Trust - This Is the Way
Introducing Zero Trust
Introducing the Zero Trust Playbook Series
Common Zero Trust questions
Summary
Chapter 2: Reading the Zero Trust Playbook Series
Reading strategies
How we structured the playbooks
Zero Trust Overview and Playbook Introduction
Business and Technical Leadership Playbook
Technical Topic Playbooks
Futures
Chapter 3: Zero Trust Is Security for Today's World
Continuous change and why we need Zero Trust
Changes come faster in the digital age
Defining success in the digital age
Technology accelerates change and complexity
A darker trend - the growth of cybercrime
Staying balanced - assume failure and assume success
Cybersecurity or information security?
Implications and imperatives of Zero Trust
It's a team sport
Security must be agile
Failure is not an option
Dispelling confusion - frequently asked questions on Zero Trust
Aren't attackers just kids in their basements playing on computers?
Shouldn't security have solved this simple technical problem by now?
Who are the attackers?
Can't we just arrest these criminals and put them in jail?
Is this just a matter of spending more money?
If I have a Zero Trust strategy and funding, can I make this go away quickly?
Can we ever be completely safe? What should I do about it?
Is this cyberwar?
What are the most damaging attacks?
What does success look like for security and Zero Trust?
Why is Zero Trust so confusing?
How do I know if something is Zero Trust?
Chapter 4: Standard Zero Trust Capabilities
Consistency via a simple model and durable capabilities.
The Open Group Zero Trust Reference Model
Security disciplines
Digital ecosystems and business assets
Key Zero Trust capabilities
Capabilities as a common language of security
Zero Trust capabilities reference
Does Zero Trust include network security?
Chapter 5: Artificial Intelligence (AI) and Zero Trust
What is AI?
What will the impact of AI look like?
What are the limitations of AI?
AI models do not "understand" anything
AI models reflect any biases in their data
How can Zero Trust help manage AI security risk?
Zero Trust - the top four priorities for managing AI risk
How will AI impact Zero Trust?
Chapter 6: How to Scope, Size, and Start Zero Trust
Agile security - think big, start small, move fast
What is agile security?
Applying agility in practice
Focus on progress instead of perfection
Always ruthlessly prioritize
Myths and misconceptions that block security agility
Pursuing perfect security is a delusion
Pursuing perfect solutions is a perfect waste
Perfect plans are perfectly fragile
Scoping, sizing, and starting Zero Trust
Will Zero Trust work in my organization?
Is it better to go big or plan smaller projects?
Large Zero Trust transformations are the most effective
Good communication can catalyze executive sponsorship
Starting small is sometimes required
How do I ensure Zero Trust stays on track and continuously delivers value?
What is the best place to start Zero Trust?
Key terminology changes and clarification
Newer terminology - technical estate
Disambiguation - operations, operational, operating model, and so on
Chapter 7: What Zero Trust Success Looks Like
Zero Trust success factors
Factor one - clear strategy and plan
Factor two - security mindset and culture shifts.
Security risk is business risk
Security is a business enabler
Security is everyone's responsibility
Security risk accountability starts at the top
Assume compromise (assume breach)
Explicit validation of trust
Asset-centric and data-centric security
Cybersecurity is a team sport
Factor three - human empathy
Zero Trust provides a competitive advantage
Key cultural themes
Chapter 8: Adoption with the Three-Pillar Model
Introduction to the three pillars
Playbook structure
Playbook layout
The strategic pillar
The operational pillar
The operating model pillar
Stitching it all together with the Zero Trust Playbook
Zero Trust integration drives changes
Chapter 9: The Zero Trust Six-Stage Plan
Overview of the six-stage plan
Using the playbook stages effectively
The playbook stages in detail
Stage 1 - Establish a strategy
Stage 2 - Set up an operating model
Stage 3 - Create the architecture and model
Stage 4 - Tailor to the business
Stage 5 - Implement and improve
Stage 6 - Continuously monitor and evolve
Chapter 10: Zero Trust Playbook Roles
Role-based approach
Integration of roles with the six-stage plan
Zero Trust affects everyone
Role definition and naming
Illustrative list of roles
Per-role guidance
Role mission and purpose
Role creation and evolution
Key role relationships
Required skills and knowledge
Tooling and capabilities for each role
Zero Trust impact and imperatives for each role
Playbook-stage involvement for each role
A day in the life of Zero Trust for each role
Defining and measuring success
Summary of per-role guidance
Making it real
Book 1 summary
What's next in The Zero Trust Playbook Series
Index
Other Books You May Enjoy.
Notes:
Includes bibliographical references and index.
Description based on print version record.
ISBN:
9781800561465
1800561466
OCLC:
1407093370

The Penn Libraries is committed to describing library materials using current, accurate, and responsible language. If you discover outdated or inaccurate language, please fill out this feedback form to report it and suggest alternative language.

Find

Home Release notes

My Account

Shelf Request an item Bookmarks Fines and fees Settings

Guides

Using the Find catalog Using Articles+ Using your account