Network Security Evaluation Using the NSA IEM

Learn How the NSA Conducts Network Secuirty Evaluations!

Bryan Cunningham, Ted Dykstra, Ed Fuller, Matthew Paul Hoagberg, Chuck Little, Greg Miles, Thomas Schack, Russ Rogers - Collection 4 Free Booklets Your Solutions Membership

436 pages, parution le 31/07/2005

Ajouter à une liste

Indisponible

Résumé

Are you an information security professional looking for a way to conduct network evaluations in a comprehensive and customized manner? Did you know that the National Security Agency has a methodology that they use and recommend? Security Evaluation was written by professionals who not only use this methodology themselves, but who helped develop and teach the course for the NSA.

Security Evaluation guides the experienced INFOSEC professional through a step-by-step process to ensure their customers receive the most accurate and comprehensive evaluation of their network security posture as possible. Security Evaluation is unique as it starts with the customer's information, not the technical tools to be used. In this way, the INFOSEC professional is able to ensure the results are relevant to the customer as opposed to delivering a standardized report, which may or may not directly affect or improve security posture. In addition, this framework will not only give the customer a sense of where they are, but also a way for both the service provider and customer to monitor and track progress over time using this repeatable methodology.

Don't be misled by other books that focus only on technical tools. As an INFOSEC professional, you owe it to yourself and your customers to also have an understanding of how legislation, industry regulation, and legal issues affect you both. Security Evaluation helps you put this all together and deliver a final product that the customer will actually understand and use.

L'auteur - Russ Rogers

Russ Rogers is a Co-Founder, Chief Executive Officer, and Principal Security Consultant for Security Horizon, Inc., a Colorado-based professional security services and training provider and veteran-owned small business. Russ is a United States Air Force Veteran and has served in military and contract support for the National Security Agency and the Defense Information Systems Agency. He served as a Certified Arabic Linguist during his time in the military and is also the editor-in-chief of The Security Journal and staff member for the Black Hat Briefings. Russ is a member of the Information System Security Association and the Information System Audit and Control Association.

Sommaire

Prologue: Why the IEM?
Introducing the INFOSEC Evaluation Methodology
Before the Evaluation Starts
Pre-Evaluation
On-site Evaluation Phase
Post-Evaluation
Appendix A: Examples of INFOSEC Tools by Baseline Activity
Appendix B: Technical Evaluation Plan Outline and Sample
Index

Voir tout

Replier

Caractéristiques techniques

	PAPIER
Éditeur(s)	Syngress
Auteur(s)	Bryan Cunningham, Ted Dykstra, Ed Fuller, Matthew Paul Hoagberg, Chuck Little, Greg Miles, Thomas Schack, Russ Rogers
Collection	4 Free Booklets Your Solutions Membership
Parution	31/07/2005
Nb. de pages	436
Format	18 x 23,5
Couverture	Broché
Poids	755g
Intérieur	Noir et Blanc
EAN13	9781597490351
ISBN13	978-1-59749-035-1