Details

The CISO's Next Frontier


The CISO's Next Frontier

AI, Post-Quantum Cryptography and Advanced Security Paradigms

von: Raj Badhwar

50,28 €

Verlag: Springer
Format: PDF
Veröffentl.: 05.08.2021
ISBN/EAN: 9783030753542
Sprache: englisch

Dieses eBook enthält ein Wasserzeichen.

Beschreibungen

<div><div><div>This book provides an advanced understanding of cyber threats as well as the risks companies are facing. It includes a detailed analysis of many technologies and approaches important to decreasing, mitigating or remediating those threats and risks. Cyber security technologies discussed in this book are futuristic and current. Advanced security topics such as secure remote work, data security, network security, application and device security, cloud security, and cyber risk and privacy are presented in this book. At the end of every chapter, an evaluation of the topic from a CISO’s perspective is provided. This book also addresses quantum computing, artificial intelligence and machine learning for cyber security</div><div><br></div>The opening chapters describe the power and danger of quantum computing, proposing two solutions for protection from probable quantum computer attacks:&nbsp; the tactical enhancement of existing algorithms to make them quantum-resistant, and the strategic implementation of quantum-safe algorithms and cryptosystems. The following chapters make the case for using supervised and unsupervised AI/ML to develop predictive, prescriptive, cognitive and auto-reactive threat detection, mitigation, and remediation capabilities against advanced attacks perpetrated by sophisticated threat actors, APT and polymorphic/metamorphic malware.</div><div><br></div><div>CISOs must be concerned about current on-going sophisticated cyber-attacks, and can address them with advanced security measures. The latter half of this book discusses some current sophisticated cyber-attacks and available protective measures enabled by the advancement of cybersecurity capabilities in various IT domains. Chapters 6-10 discuss secure remote work; chapters 11-17, advanced data security paradigms; chapters 18-28, Network Security; chapters 29-35, application and device security; chapters 36-39, Cloud security; and chapters 40-46 organizational cyber risk measurementand event probability.</div><div><br></div><div>Security and IT engineers, administrators and developers, CIOs, CTOs, CISOs, and CFOs will want to purchase this book. Risk personnel, CROs, IT and Security Auditors as well as security researchers and journalists will also find this useful.</div></div>
Are you ready for Quantum computing?.-&nbsp;The need for post-quantum cryptography.-&nbsp;Quantum Encryption is not a Paradox.-&nbsp;AI Code of Ethics for Cybersecurity.-&nbsp;The Case of AI/ML in Cybersecurity.-&nbsp;Security for Work-From-Home Technologies.-&nbsp;Secure video conferencing and online collaboration.-&nbsp;If you must work from home, do it securely!.-&nbsp;Security Controls for Remote Access Technologies.-&nbsp;Specialty Malware and backdoors for VDI.-&nbsp;The Future State of Data Security.-&nbsp;Cybersecurity enabled by Zero Trust.-&nbsp;Advanced Active Directory attacks and Prevention.-&nbsp;Cyber Deception Systems.-&nbsp;Hypervisor Introspection.-&nbsp;Bitcoin is a decade old, and so are the threats to the various blockchain ecosystems.-&nbsp;The advanced malware prevention playbook.-&nbsp;The 768K Precipice.-&nbsp;MAC Address Randomization to limit user/device tracking.-&nbsp;Transport Layer Security 1.3.-&nbsp;The use of ESNI with TLS 1.3, is it a boon to privacy?Or does it raise security concerns.-&nbsp;Using FQDN vs IP addresses in FW rules and app configs.-&nbsp;Network Time Protocol (NTP) Security.-&nbsp;Domain Name System (DNS) Security.-&nbsp;Next Gen Wi-Fi and Security.-&nbsp;The next frontier for CA/Certificate security - DANE and Certificate Transparency.-&nbsp;Man-in-the-middle Attack Prevention.-&nbsp;Distributed Denial of Service (DDoS) Prevention.-&nbsp;Intro to API Security – Issues and Some Solutions!.-&nbsp;Windows subsystem for Linux - security risk and mitigation.-&nbsp;Common sense security measures for voice activated assistant devices.-&nbsp;The case for code signing and dynamic white-listing.-&nbsp;Biometrics - Commentary on data breach notification, threats, and data security.-&nbsp;Security requirements for RPA Bots.-&nbsp;Polymorphic and Metamorphic Malware.-&nbsp;Introduction to Cloud Monitoring Security Controls.-&nbsp;Cloud Monitoring Security Controls for AWS.-&nbsp;Cloud Monitoring Security Controls for Azure.-&nbsp;Cloud Policy Enforcement Point.-&nbsp;Dynamic measurement of cyber risk.-&nbsp;OEM and third-party sourced application and services risk.-&nbsp;Commentary on Insider Threat.-&nbsp;Simplified approach to calculate the probability of a cyber event.-&nbsp;Privacy concerns from publicly available meta-data.-&nbsp;Dark Web & Dark Net.-&nbsp;Risk-Based Vulnerability Management.<br>
<div>Raj Badhwar has 25+ years of experience within the Cybersecurity and IT industry. He is currently the CISO for Voya Financial, and has previously held senior Security and IT leadership roles at AIG, BAE Systems Inc., Bank of America, Time Warner Cable, AOL Time Warner, and Sprint.&nbsp;</div><div><br></div><div>Raj is a currently a director and secretary of the board of the National Technology Security Coalition (NTSC). He also serves on the cybersecurity advisory boards of Pace University, Rutgers University, and Ithaca College; the customer advisory board for Venafi; and the CISO advisory council for Infosys.&nbsp;</div><div><br></div><div>Raj is a certified information systems security professional (CISSP), a certified ethical hacker (CEH), and a FINRA licensed securities professional (Series 99). He has co-authored 14 security patents, and has written and presented in the areas of advanced encryption, post-quantum cryptography, zero trust networks, cloud security pat-terns, and secure remote work paradigms. He has also been inter-viewed as a cybersecurity subject matter expert by WSJ. Raj is proficient in three languages, and conversant in another three languages.&nbsp;</div><div><br></div><div>Raj graduated from George Washington University (GWU) with an MS in Information Systems Technology and also holds a BS in Electrical and Electronics engineering from Karnatak University. Raj is an alumnus of St Francis College, Lucknow.</div>
<div><div><div><div><div>This book provides an advanced understanding of cyber threats as well as the risks companies are facing. It includes a detailed analysis of many technologies and approaches important to decreasing, mitigating or remediating those threats and risks. Cyber security technologies discussed in this book are futuristic and current. Advanced security topics such as secure remote work, data security, network security, application and device security, cloud security, and cyber risk and privacy are presented in this book. At the end of every chapter, an evaluation of the topic from a CISO’s perspective is provided. This book also addresses quantum computing, artificial intelligence and machine learning for cyber security</div><div><br></div><div>The opening chapters describe the power and danger of quantum computing, proposing two solutions for protection from probable quantum computer attacks:&nbsp; the tactical enhancement of existing algorithms to make them quantum-resistant, and the strategic implementation of quantum-safe algorithms and cryptosystems. The following chapters make the case for using supervised and unsupervised AI/ML to develop predictive, prescriptive, cognitive and auto-reactive threat detection, mitigation, and remediation capabilities against advanced attacks perpetrated by sophisticated threat actors, APT and polymorphic/metamorphic malware.</div><div><br></div><div>CISOs must be concerned about current on-going sophisticated cyber-attacks, and can address them with advanced security measures. The latter half of this book discusses some current sophisticated cyber-attacks and available protective measures enabled by the advancement of cybersecurity capabilities in various IT domains. Chapters 6-10 discuss secure remote work; chapters 11-17, advanced data security paradigms; chapters 18-28, Network Security; chapters 29-35, application and device security; chapters 36-39, Cloud security; and chapters 40-46 organizational cyber risk measurement and event probability.</div><div><br></div><div>Security and IT engineers, administrators and developers, CIOs, CTOs, CISOs, and CFOs will want to purchase this book. Risk personnel, CROs, IT and Security Auditors as well as security researchers and journalists will also find this useful.</div></div></div></div></div>
Discusses how artificial intelligence can prevent cyber-attacks Optimize organizational security by following the cybersecurity ethics for artificial intelligence Provides information on how to avoid Solarwinds-type attacks, learn defense techniques against advanced malware, DDoS attacks, and ransomware Provides information on how to keep an organization safe in AWS and Azure cloud environments with security monitoring Introduces how to minimize attack surface and reduce cyber-attacks by implementing Zero Trust with least privilege

Diese Produkte könnten Sie auch interessieren:

Quantifiers in Action
Quantifiers in Action
von: Antonio Badia
PDF ebook
96,29 €
Managing and Mining Uncertain Data
Managing and Mining Uncertain Data
von: Charu C. Aggarwal
PDF ebook
96,29 €