1 option
Zero Trust Overview and Playbook Introduction : Guidance for Business, Security, and Technology Leaders and Practitioners / Mark Simos, Nikhil Kumar, and Ann Johnson.
- Format:
- Book
- Author/Creator:
- Simos, Mark, author.
- Kumar, Nikhil, author.
- Johnson, Ann, author.
- Series:
- Zero trust playbook.
- Zero trust playbook series
- Language:
- English
- Subjects (All):
- Computer security.
- Physical Description:
- 1 online resource (241 pages)
- Edition:
- First edition.
- Place of Publication:
- Birmingham, England : Packt Publishing Ltd., [2023]
- Summary:
- Enhance your cybersecurity and agility with this thorough playbook, featuring actionable guidance, insights, and success criteria from industry experts Key Features Get simple, clear, and practical advice for everyone from CEOs to security operations Organize your Zero Trust journey into role-by-role execution stages Integrate real-world implementation experience with global Zero Trust standards Purchase of the print or Kindle book includes a free eBook in the PDF format Book Description Zero Trust is cybersecurity for the digital era and cloud computing, protecting business assets anywhere on any network. By going beyond traditional network perimeter approaches to security, Zero Trust helps you keep up with ever-evolving threats. The playbook series provides simple, clear, and actionable guidance that fully answers your questions on Zero Trust using current threats, real-world implementation experiences, and open global standards. The Zero Trust playbook series guides you with specific role-by-role actionable information for planning, executing, and operating Zero Trust from the boardroom to technical reality. This first book in the series helps you understand what Zero Trust is, why it's important for you, and what success looks like. You'll learn about the driving forces behind Zero Trust - security threats, digital and cloud transformations, business disruptions, business resilience, agility, and adaptability. The six-stage playbook process and real-world examples will guide you through cultural, technical, and other critical elements for success. By the end of this book, you'll have understood how to start and run your Zero Trust journey with clarity and confidence using this one-of-a-kind series that answers the why, what, and how of Zero Trust! What you will learn Find out what Zero Trust is and what it means to you Uncover how Zero Trust helps with ransomware, breaches, and other attacks Understand which business assets to secure first Use a standards-based approach for Zero Trust See how Zero Trust links business, security, risk, and technology Use the six-stage process to guide your Zero Trust journey Transform roles and secure operations with Zero Trust Discover how the playbook guides each role to success Who this book is for Whether you're a business leader, security practitioner, or technology executive, this comprehensive guide to Zero Trust has something for you. This book provides practical guidance for implementing and managing a Zero Trust strategy and its impact on every role (including yours!). This is the go-to guide for everyone including board members, CEOs, CIOs, CISOs, architects, engineers, IT admins, security analysts, program managers, product owners, developers, and managers. Don't miss out on this essential resource for securing your organization against cyber threats.
- Contents:
- Cover
- Title Page
- Copyright and Credits
- Dedicated
- Foreword
- Contributors
- Table of Contents
- Preface
- Chapter 1: Zero Trust - This Is the Way
- Introducing Zero Trust
- Introducing the Zero Trust Playbook Series
- Common Zero Trust questions
- Summary
- Chapter 2: Reading the Zero Trust Playbook Series
- Reading strategies
- How we structured the playbooks
- Zero Trust Overview and Playbook Introduction
- Business and Technical Leadership Playbook
- Technical Topic Playbooks
- Futures
- Chapter 3: Zero Trust Is Security for Today's World
- Continuous change and why we need Zero Trust
- Changes come faster in the digital age
- Defining success in the digital age
- Technology accelerates change and complexity
- A darker trend - the growth of cybercrime
- Staying balanced - assume failure and assume success
- Cybersecurity or information security?
- Implications and imperatives of Zero Trust
- It's a team sport
- Security must be agile
- Failure is not an option
- Dispelling confusion - frequently asked questions on Zero Trust
- Aren't attackers just kids in their basements playing on computers?
- Shouldn't security have solved this simple technical problem by now?
- Who are the attackers?
- Can't we just arrest these criminals and put them in jail?
- Is this just a matter of spending more money?
- If I have a Zero Trust strategy and funding, can I make this go away quickly?
- Can we ever be completely safe? What should I do about it?
- Is this cyberwar?
- What are the most damaging attacks?
- What does success look like for security and Zero Trust?
- Why is Zero Trust so confusing?
- How do I know if something is Zero Trust?
- Chapter 4: Standard Zero Trust Capabilities
- Consistency via a simple model and durable capabilities.
- The Open Group Zero Trust Reference Model
- Security disciplines
- Digital ecosystems and business assets
- Key Zero Trust capabilities
- Capabilities as a common language of security
- Zero Trust capabilities reference
- Does Zero Trust include network security?
- Chapter 5: Artificial Intelligence (AI) and Zero Trust
- What is AI?
- What will the impact of AI look like?
- What are the limitations of AI?
- AI models do not "understand" anything
- AI models reflect any biases in their data
- How can Zero Trust help manage AI security risk?
- Zero Trust - the top four priorities for managing AI risk
- How will AI impact Zero Trust?
- Chapter 6: How to Scope, Size, and Start Zero Trust
- Agile security - think big, start small, move fast
- What is agile security?
- Applying agility in practice
- Focus on progress instead of perfection
- Always ruthlessly prioritize
- Myths and misconceptions that block security agility
- Pursuing perfect security is a delusion
- Pursuing perfect solutions is a perfect waste
- Perfect plans are perfectly fragile
- Scoping, sizing, and starting Zero Trust
- Will Zero Trust work in my organization?
- Is it better to go big or plan smaller projects?
- Large Zero Trust transformations are the most effective
- Good communication can catalyze executive sponsorship
- Starting small is sometimes required
- How do I ensure Zero Trust stays on track and continuously delivers value?
- What is the best place to start Zero Trust?
- Key terminology changes and clarification
- Newer terminology - technical estate
- Disambiguation - operations, operational, operating model, and so on
- Chapter 7: What Zero Trust Success Looks Like
- Zero Trust success factors
- Factor one - clear strategy and plan
- Factor two - security mindset and culture shifts.
- Security risk is business risk
- Security is a business enabler
- Security is everyone's responsibility
- Security risk accountability starts at the top
- Assume compromise (assume breach)
- Explicit validation of trust
- Asset-centric and data-centric security
- Cybersecurity is a team sport
- Factor three - human empathy
- Zero Trust provides a competitive advantage
- Key cultural themes
- Chapter 8: Adoption with the Three-Pillar Model
- Introduction to the three pillars
- Playbook structure
- Playbook layout
- The strategic pillar
- The operational pillar
- The operating model pillar
- Stitching it all together with the Zero Trust Playbook
- Zero Trust integration drives changes
- Chapter 9: The Zero Trust Six-Stage Plan
- Overview of the six-stage plan
- Using the playbook stages effectively
- The playbook stages in detail
- Stage 1 - Establish a strategy
- Stage 2 - Set up an operating model
- Stage 3 - Create the architecture and model
- Stage 4 - Tailor to the business
- Stage 5 - Implement and improve
- Stage 6 - Continuously monitor and evolve
- Chapter 10: Zero Trust Playbook Roles
- Role-based approach
- Integration of roles with the six-stage plan
- Zero Trust affects everyone
- Role definition and naming
- Illustrative list of roles
- Per-role guidance
- Role mission and purpose
- Role creation and evolution
- Key role relationships
- Required skills and knowledge
- Tooling and capabilities for each role
- Zero Trust impact and imperatives for each role
- Playbook-stage involvement for each role
- A day in the life of Zero Trust for each role
- Defining and measuring success
- Summary of per-role guidance
- Making it real
- Book 1 summary
- What's next in The Zero Trust Playbook Series
- Index
- Other Books You May Enjoy.
- Notes:
- Includes bibliographical references and index.
- Description based on print version record.
- ISBN:
- 9781800561465
- 1800561466
- OCLC:
- 1407093370
The Penn Libraries is committed to describing library materials using current, accurate, and responsible language. If you discover outdated or inaccurate language, please fill out this feedback form to report it and suggest alternative language.