Modern Cybersecurity Strategies for Enterprises Protect and Secure Your Enterprise Networks, Digital Business Assets, and… (Ashish Mishra) (z-library.sk, 1lib.sk, z-lib.sk)

📄 File Format: PDF

💾 File Size: 8.5 MB

📖 Read Online ⬇️ Download

Registered users can read the full content for free

Register as a Gaohf Library member to read the complete e-book online for free and enjoy a better reading experience.

📄 Page 1

(This page has no text content)

📄 Page 2

(This page has no text content)

📄 Page 3

Modern Cybersecurity Strategies for Enterprises Protect and Secure Your Enterprise Networks, Digital Business Assets, and Endpoint Security with Tested and Proven Methods Ashish Mishra www.bpbonline.com

📄 Page 4

Copyright © 2023 BPB Online All rights reserved. No part of this book may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written permission of the publisher, except in the case of brief quotations embedded in critical articles or reviews. Every effort has been made in the preparation of this book to ensure the accuracy of the information presented. However, the information contained in this book is sold without warranty, either express or implied. Neither the author, nor BPB Online or its dealers and distributors, will be held liable for any damages caused or alleged to have been caused directly or indirectly by this book. BPB Online has endeavored to provide trademark information about all of the companies and products mentioned in this book by the appropriate use of capitals. However, BPB Online cannot guarantee the accuracy of this information. Group Product Manager: Marianne Conor Publishing Product Manager: Eva Brawn Senior Editor: Connell Content Development Editor: Melissa Monroe Technical Editor: Anne Stokes Copy Editor: Joe Austin Language Support Editor: Justin Baldwin Project Coordinator: Tyler Horan Proofreader: Khloe Styles Indexer: V. Krishnamurthy Production Designer: Malcolm D'Souza Marketing Coordinator: Kristen Kramer First published: 2023 Published by BPB Online WeWork, 119 Marylebone Road

📄 Page 5

London NW1 5PU UK | UAE | INDIA | SINGAPORE ISBN 978-93-55513-137 www.bpbonline.com

📄 Page 6

Dedicated to My beloved wife: Madhu & My kids: Aarush & Aarav

📄 Page 7

About the Author Ashish Mishra is a seasoned IT professional with more than 18 years of experience in the industry. He holds a strong grip and command of IT (Information Technology) and IS (Information Security) Domain, and is experienced with managing large IT & IS Operations, Strategy building, Transformation journey, Project & Program Management, and Service Delivery. His technical areas of expertise include but are not limited to Public Cloud, Private Cloud, Cloud Security, Network Security, SASE, and Zero Trust. With the thought process of “Continuous learning is the key to success” he possesses more than 100+ professional certifications across various technologies and platforms around Public and Private Cloud, Cloud Security, Information Security, Cyber Security, Compliance, Infrastructure management, Leadership, Project management, and many more. LinkedIn profile: - https://www.linkedin.com/in/amishra1983/ Blog site: - https://km-cybersecurity.blogspot.com

📄 Page 8

About the Reviewers Santosh Tiwari has been associated with the IT industry for more than 18 years and has vast experience in Information Technology and Information Security. His core competency includes but is not limited to Network & Perimeter Security, Cloud Security, GRC (Governance Risk & Compliance), and Data Center Operations. He has delivered multiple turn key and complex transformation programs across different business verticals spread across different geography. His professional certifications include CISM, CRISC, Lead Auditor for ISMS 27001, 22301, and 20000. He also holds technical certifications in Amazon Web Services, Palo Alto, and CheckPoint technologies. In his current profile, he is associated with Tech Mahindra Ltd. and working as Security Architect. Vikram Kolekar is a veteran in the IT industry and has spent the last one and half decade working in ‘Information Technology’, ‘Cyber Security’ and ‘Cloud Security’ and involved in Architecture, Design, Implementation, and Technical Program Management from both the IT and Security aspects. He has a global and domestic experience of working in Security vertical of different industry sectors (in the Banking & finance domain, Insurance companies, Product companies as well Service Integration providers) He holds several certification in Cyber Security Architecture, Risk Management, ERM, AWS, Azure & Google Cloud. He abhors the silos that traditional IT creates and the detriment they pose to organization.

📄 Page 9

Acknowledgement Without the encouragement and support of my great wife, Madhu, who informed me that I couldn't pass up this opportunity and juggled schedules and duties for almost a year to make it happen, this book would not have occurred. I'd also like to thank Aarush and Aaav, my children, for giving up their weekends and vacation time so that I could work on this book. It takes a lot of people besides the author to have a book published, and I didn't realize it until I started writing one. I'd like to express my gratitude to BPB Publication's entire staff for their assistance in getting this book published. I'd like to thank Vikram Kolekar and Santosh Tiwari for taking time out of their busy schedules to assess the content from a technical standpoint. Finally, I'd like to express my gratitude to all of my friends, family, colleagues, clients, partners, and mentors who have helped me over the years by answering questions, bouncing ideas around, listening to bad puns, laughing at my mistakes, and teaching me the majority of the content in this book.

📄 Page 10

Preface This book will help you to understand and aim to build a cybersecurity strategy for your enterprise. With the help of this book, we intend to explain the foundation and building blocks that will help the readers and audience to understand and define the Cyber Security strategies for their environment. It’s evident that security is a shared responsibility, and everybody is responsible for the same, however, the CxO layer is the one who always owns this piece. A mature strategy will help the Organization to build a foundational framework. This book will contain but is not limited to the following areas in the Security space: 1. Securing the Cyber landscape 2. Protecting critical data and Infrastructure Component 3. Building blocks to build a matured and secured ecosystem 4. Inclusion and adoption of Regulatory standards 5. Assurance Framework This book will also help you to understand various building blocks, technologies, Security domains, and frameworks that one should adopt to build a strong and matured ecosystem. While this book will be focused on defining the Strategy, we will restrict ourselves to any specific products or the tools, however, will touch base on various Technologies and frameworks which should be considered while defining the Cyber security strategies. These technologies and framework when positioned appropriately and adopted by the Business organization, provides a much more stable and mature Cyber Security landscape. This book is divided into 15 chapters spread across different sections. Chapter 1: - Overview of Information Security and Cyber Security & problem statement

📄 Page 11

This chapter will provide a high-level glimpse and understanding of industry vide accepted definitions of Information security and cyber security. We will talk about the problem statements which will act as a primary influencer to have a strategy for Cyber security. This chapter will also cover the basic difference between these two terminologies along with the importance of having a matured strategy. Chapter 2: - Aligning Security with business objectives and CISOS Role This chapter will talk about how Business views the Security and how we can align it with the CISO objectives to form a matured strategy that should address the security concerns along with meeting the business requirement too. Here we will also include the need to have a strategy for Cyber Security. This chapter will talk about various incidents which have impacted the enterprise world in the near past. Chapter 3: - Next-generation perimeter solutions Perimeter security is one of the critical and core components of any security architecture, and no business should be without them. We will talk about firewalls overview, next-generation solutions, various modules and components of firewalls, and how they function and should be configured to provide their best usage. This chapter will also provide brief information about Industry leaders for various functionalities. Chapter 4: - Next-generation Endpoint Security - EDR (Endpoint Detection & Response) This chapter will talk about another basic building block to building a robust and matured cyber security ecosystem. We will focus on how Endpoint security will play a vital role, its types, and its positioning of the same. Chapter 5: - Security Incident Response (IR) Methodology Incident management plays a vital role while defining a matured architecture and it's one of the crucial building blocks. This section will talk about the overview of Incident management, IR framework, methodology, various workflow, how it can be adopted in an Operations, and its integration with various other components.

📄 Page 12

Chapter 6: - Cloud Security & identity Management With the whole world moving towards Cloud, it's evident that Cloud will play a crucial role in the upcoming era. This chapter will talk about various Cloud security topics that should be considered while building the right strategy and its deployment scenarios. Any assets (Corporate or BYOD) which are used to enhance the business productivity must remain confidential and secure at all times and hence Data Security plays a very crucial role while defining the Cyber security strategy for any Organization. This chapter will talk about the importance of Data Security and its essential elements. Another important aspect of any security framework is – Identity & access management. The identity of the users and their access methodology plays a crucial role to ensure that the CIA (Confidential, Integrity, and Availability) is maintained. It provides an assurance and helps the organization keep track of its activities. This chapter will focus on providing an overview of Identity and its access management, importance, and various components which will strengthen its deployment. Chapter 7: - Vulnerability Assessment & Penetration Testing (PT) No matter what security measures and technologies any enterprise is using, we always have vulnerabilities around us. This chapter will focus on giving an overview of different types of Vulnerabilities and how they impact our environment, what should be our strategy to establish a robust vulnerability management framework that will help us to have continuous monitoring and mitigation exercise. The 2nd half of this chapter will focus on Application security (AppSec) which is the process through which organizations review the applications they are using and make them more secure via different methodology. AppSec plays a vital component while building the overall strategy and architecture as this helps the Organization to have protection at the Application layer. This chapter will cover the basic working principle of Application security along with different types, importance, and deployment scenario. Chapter 8: - Critical components of Infrastructure (private and public Cloud)

📄 Page 13

While the whole world is shifting towards Cloud, it's evident that we need to understand the Cloud world better and stitch them into our Security ecosystem. This chapter will illustrate different cloud components at the Infrastructure layer which need to be secured to maintain and uplift the security posture of the Organization. The goal of the Information security framework is to protect the CIA of any Organization. Data & Asset classification helps the Organization to achieve the CIA and the classification reflects the impact on the CIA if compromised. This section of the book will help us to understand the industry norms and recommendations to implement Data & Asset Classification process, importance, and RACI matrix. Chapter 9: - Importance of Regulatory requirements and Business Continuity This chapter will help us to focus on the approach to identify the appropriate compliance requirement against any Enterprise. Once the Requirement is confirmed, we will also talk about how it will be aligned with Business requirements and serve the purpose of protecting the digital assets of the Organizations. This chapter will help us to understand various deciding factors which help the Organization to select the Regulatory standards they need to follow. We will also understand briefly different Compliance which will be applicable as a common framework and as a recommended approach. Cybersecurity is a critical component of the Business Continuity plan of any Enterprise along with its policies and processes mapped to core technologies and business applications and the protection of sensitive data must be taken into consideration. This chapter will focus on the general overview of Business Continuity and its modules, integration of cybersecurity and BCP, and alignment of Business Continuity with required Compliance standards. We will also include the best practices we should consider while implementing Business Continuity for cyber security. Chapter 10: - Risk Management - Life Cycle Risk Management is the fundamental principle of Cyber Security. It’s a process of identifying, analyzing, evaluating, and addressing the Enterprise’s cyber security threats. This chapter will help us to understand

📄 Page 14

the end-to-end Risk management process, including the methodology, assessment, and treatment plan. Once the risk assessment exercise is over, it’s important to prioritize the risk to perform the risk treatment exercise This chapter will help us to understand how to prioritize the risk for any Organization and the way to prioritize and mitigate it. Chapter 11: - People, Process, and Awareness Communication and collaboration are key to Information security for any Enterprise. Staffing and resourcing play a vital role in any strategic initiative and so is our space. This chapter will help us to spend some time doing a deep dive to lay out some structure which will help us to build our team with the right skill sets and at the same time justify the budget too. We will also talk about various controls and frameworks we should adopt to monitor our partners. This will help us to reduce any possible risk to the Organization’s overall ecosystem. The people of any Organization are the biggest asset they have and hence it's evident that they should understand the importance of Security. This chapter will help us to focus on the importance of Security awareness and training exercises which will ensure that the employees are aware of security hygiene and understand the protection risk. Chapter 12: - Threat Intelligence & Next-generation SIEM solution Threat Intelligence is the collection of different information which any organization will use to understand the threats and potential risks they have. This chapter will help us to understand the threat intelligence in-depth, its different types, and the best way it can be used to get better visibility. Monitoring the environment continuously is the key principle to protecting it. This chapter will be detailed about how it happens, its benefits, and working principles along with industry-leading solutions and trends. We will also cover the latest products and technology brief which will help you to choose the right solutions while building your cyber security ecosystem. Chapter 13: - Cloud Security Posture Management (CSPM) Since the world is moving towards Cloud, we should certainly focus on Secure posture management exclusive to the Cloud landscape. CSPM is designed specifically to understand various misconfiguration and

📄 Page 15

compliance risks in the Cloud. This chapter will help you to understand CSPM in a detailed manner along with its need, importance, benefits, working principle examples, and recommendations. Chapter 14: - Implementation Guidelines & Template walkthrough This chapter will aim to enumerate and detail the steps that any Enterprise should follow to develop its Cybersecurity strategies. This chapter will explain the entire lifecycle of Strategy development which will help the enterprise to develop and review the cyber security strategy for their organization. This chapter will also include a brief on what the Cybersecurity strategy template should look like with a few examples for better understanding. The template will cover all the major points from the strategy guidelines. Chapter 15: - Best practices on critical components and Industry-wide adopted recommendations Prevention is better than cure. This chapter will focus on a couple of best practices for Cyber security space that should be considered while framing your entire ecosystem. These are not mandatory requirements but certainly, uplift the overall posture of Cyber security space for any Organization. The way our current threat landscape looks with an unprecedented increase in attacks and data breaches, the Security world needs a continuous review and adoption process to mitigate the risks and threats around them. We will also include some of the emerging technologies and recommendations which will play a vital role in uplifting the overall security posture of any enterprise.

📄 Page 16

Coloured Images Please follow the link to download the Coloured Images of the book: https://rebrand.ly/hzw28fh We have code bundles from our rich catalogue of books and videos available at https://github.com/bpbpublications. Check them out! Errata We take immense pride in our work at BPB Publications and follow best practices to ensure the accuracy of our content to provide with an indulging reading experience to our subscribers. Our readers are our mirrors, and we use their inputs to reflect and improve upon human errors, if any, that may have occurred during the publishing processes involved. To let us maintain the quality and help us reach out to any readers who might be having difficulties due to any unforeseen errors, please write to us at : errata@bpbonline.com Your support, suggestions and feedbacks are highly appreciated by the BPB Publications’ Family. Did you know that BPB offers eBook versions of every book published, with PDF and ePub files available? You can upgrade to the eBook version at www.bpbonline.com and as a print book customer, you are entitled to a discount on the eBook copy. Get in touch with us at: business@bpbonline.com for more details. At www.bpbonline.com, you can also read a collection of free technical articles, sign up for a range of free newsletters, and receive

📄 Page 17

exclusive discounts and offers on BPB books and eBooks.

📄 Page 18

Piracy If you come across any illegal copies of our works in any form on the internet, we would be grateful if you would provide us with the location address or website name. Please contact us at business@bpbonline.com with a link to the material. If you are interested in becoming an author If there is a topic that you have expertise in, and you are interested in either writing or contributing to a book, please visit www.bpbonline.com. We have worked with thousands of developers and tech professionals, just like you, to help them share their insights with the global tech community. You can make a general application, apply for a specific hot topic that we are recruiting an author for, or submit your own idea. Reviews Please leave a review. Once you have read and used this book, why not leave a review on the site that you purchased it from? Potential readers can then see and use your unbiased opinion to make purchase decisions. We at BPB can understand what you think about our products, and our authors can see your feedback on their book. Thank you! For more information about BPB, please visit www.bpbonline.com.

📄 Page 19

Table of Contents Section - I: Overview and Need for Cybersecurity 1. Overview of Information Security and Cybersecurity Structure Objectives Information security principles Confidentiality Integrity Availability Additional/supporting principles Information security policies Need for an information security policy Building block of information security policy Cybersecurity - overview Definition of cybersecurity Difference between information security and cybersecurity Common threats in the market What is a cybersecurity threat? Types of cybersecurity threats Sources behind these Threat umbrellas Importance of cybersecurity Impact of cybercrime Facts and figures to understand the seriousness of cybersecurity Need of the hour and problem statement Few examples to justify the need of the hour Problem statement Cybersecurity strategy and its importance Common cybersecurity myths Strategy components Risk assessment Technologies’ adoption

📄 Page 20

Conclusion Questions 2. Aligning Security With Business Objectives and Defining CISO Role Structure Objectives Today’s challenges for the CISO Aligning security with business objectives Learn the game ~ know your business Break the ice - Partner with executives and Board members Learn to speak “business language” Money speaks ~ Align security with profit Future security leaders Technology Process People Return on Investment (RoI) in cybersecurity Business outlook Definition and formula Role understanding for the modern security leaders CISO responsibilities Effective communication - from CISO to business Budget justification & review meeting Cybersecurity roadmap Conclusion Questions Section - II: Building Blocks for a Secured Ecosystem and Identification of Critical Components 3. Next-generation Perimeter Solutions Structure Objectives Overview and concept understanding Perimeter network