The Cyber Risk Handbook
| Author | : Domenic Antonucci |
| Publisher | : John Wiley & Sons |
| Total Pages | : 442 |
| Release | : 2017-05-01 |
| Genre | : Business & Economics |
| ISBN | : 1119308801 |
Actionable guidance and expert perspective for real-world cybersecurity The Cyber Risk Handbook is the practitioner's guide to implementing, measuring and improving the counter-cyber capabilities of the modern enterprise. The first resource of its kind, this book provides authoritative guidance for real-world situations, and cross-functional solutions for enterprise-wide improvement. Beginning with an overview of counter-cyber evolution, the discussion quickly turns practical with design and implementation guidance for the range of capabilities expected of a robust cyber risk management system that is integrated with the enterprise risk management (ERM) system. Expert contributors from around the globe weigh in on specialized topics with tools and techniques to help any type or size of organization create a robust system tailored to its needs. Chapter summaries of required capabilities are aggregated to provide a new cyber risk maturity model used to benchmark capabilities and to road-map gap-improvement. Cyber risk is a fast-growing enterprise risk, not just an IT risk. Yet seldom is guidance provided as to what this means. This book is the first to tackle in detail those enterprise-wide capabilities expected by Board, CEO and Internal Audit, of the diverse executive management functions that need to team up with the Information Security function in order to provide integrated solutions. Learn how cyber risk management can be integrated to better protect your enterprise Design and benchmark new and improved practical counter-cyber capabilities Examine planning and implementation approaches, models, methods, and more Adopt a new cyber risk maturity model tailored to your enterprise needs The need to manage cyber risk across the enterprise—inclusive of the IT operations—is a growing concern as massive data breaches make the news on an alarmingly frequent basis. With a cyber risk management system now a business-necessary requirement, practitioners need to assess the effectiveness of their current system, and measure its gap-improvement over time in response to a dynamic and fast-moving threat landscape. The Cyber Risk Handbook brings the world's best thinking to bear on aligning that system to the enterprise and vice-a-versa. Every functional head of any organization must have a copy at-hand to understand their role in achieving that alignment.
CISSP For Dummies
| Author | : Lawrence C. Miller |
| Publisher | : John Wiley & Sons |
| Total Pages | : 566 |
| Release | : 2009-11-12 |
| Genre | : Computers |
| ISBN | : 047059991X |
The bestselling guide to CISSP certification – now fully updated for the latest exam! There are currently over 75,000 CISSP certified people out there and thousands take this exam each year. The topics covered in the exam include: network security, security management, systems development, cryptography, disaster recovery, law, and physical security. CISSP For Dummies, 3rd Edition is the bestselling guide that covers the CISSP exam and helps prepare those wanting to take this security exam. The 3rd Edition features 200 additional pages of new content to provide thorough coverage and reflect changes to the exam. Written by security experts and well-known Dummies authors, Peter Gregory and Larry Miller, this book is the perfect, no-nonsense guide to the CISSP certification, offering test-taking tips, resources, and self-assessment tools. Fully updated with 200 pages of new content for more thorough coverage and to reflect all exam changes Security experts Peter Gregory and Larry Miller bring practical real-world security expertise CD-ROM includes hundreds of randomly generated test questions for readers to practice taking the test with both timed and untimed versions CISSP For Dummies, 3rd Edition can lead you down the rough road to certification success! Note: CD-ROM/DVD and other supplementary materials are not included as part of eBook file.
Hacking APIs
| Author | : Corey J. Ball |
| Publisher | : No Starch Press |
| Total Pages | : 362 |
| Release | : 2022-07-05 |
| Genre | : Computers |
| ISBN | : 1718502451 |
Hacking APIs is a crash course in web API security testing that will prepare you to penetration-test APIs, reap high rewards on bug bounty programs, and make your own APIs more secure. Hacking APIs is a crash course on web API security testing that will prepare you to penetration-test APIs, reap high rewards on bug bounty programs, and make your own APIs more secure. You’ll learn how REST and GraphQL APIs work in the wild and set up a streamlined API testing lab with Burp Suite and Postman. Then you’ll master tools useful for reconnaissance, endpoint analysis, and fuzzing, such as Kiterunner and OWASP Amass. Next, you’ll learn to perform common attacks, like those targeting an API’s authentication mechanisms and the injection vulnerabilities commonly found in web applications. You’ll also learn techniques for bypassing protections against these attacks. In the book’s nine guided labs, which target intentionally vulnerable APIs, you’ll practice: • Enumerating APIs users and endpoints using fuzzing techniques • Using Postman to discover an excessive data exposure vulnerability • Performing a JSON Web Token attack against an API authentication process • Combining multiple API attack techniques to perform a NoSQL injection • Attacking a GraphQL API to uncover a broken object level authorization vulnerability By the end of the book, you’ll be prepared to uncover those high-payout API bugs other hackers aren’t finding and improve the security of applications on the web.
The PMP Exam
| Author | : Andy Crowe |
| Publisher | : |
| Total Pages | : 0 |
| Release | : 2010-11 |
| Genre | : Project management |
| ISBN | : 9780982760802 |
An all-inclusive, self-study guide for the PMI's Project Management Professional (PMP) certification exam, this kit provides all the information project managers need to thoroughly prepare for the test. It contains the book The PMP Exam: How to Pass on Your First Try; hundreds of flash cards to help with memorization of key points; a laminated quick reference guide; a six-month online subscription to the PMP course in InSite (the top PMP e-learning site); and five audio CDs featuring experts Andy Crowe, Bill Yates, and Louis Alderman discussing the main points and concepts for the exam. The included learning materials cover all the processes, inputs, tools, and outputs that will be tested, along with insider secrets, test tricks and tips, hundreds of sample questions, and exercises designed to strengthen mastery of key concepts to help you pass the exam with confidence.
