Information Security Handbook by Darren Death

Implement information security effectively as per your organizations needs.Key FeaturesLearn to build your own information security framework, the best fit for your organizationBuild on the concepts of threat modeling, incidence response, and security analysisPractical use cases and best practices for information securityBook DescriptionHaving an information security mechanism is one of the most crucial factors for any organization. Important assets of organization demand a proper risk management and threat model for security, and so information security concepts are gaining a lot of traction. This book starts with the concept of information security and shows you why its important.It then moves on to modules such as threat modeling, risk management, and mitigation. It also covers the concepts of incident response systems, information rights management, and more. Moving on, it guides you to build your own information security framework as the best fit for your organization. Toward the end, youll discover some best practices that can be implemented to make your security framework strong.By the end of this book, you will be well-versed with all the factors involved in information security, which will help you build a security framework that is a perfect fit your organizations requirements.What you will learnDevelop your own information security frameworkBuild your incident response mechanismDiscover cloud security considerationsGet to know the system development life cycleGet your security operation center up and runningKnow the various security testing typesBalance security as per your business needsImplement information security best practicesWho This Book Is ForThis book is for security analysts and professionals who deal with security mechanisms in an organization. If you are looking for an end to end guide on information security and risk analysis with no prior knowledge of this domain, then this book is for you.Table of ContentsInformation and Data Security FundamentalsThreat ModelingPreparing for Information SecurityInformation Security Risk ManagementDeveloping your Information and Data Security PlanContinuous Security Testing and MonitoringBusiness Continuity / Disaster Recovery PlanningIncident Response PlanningDeveloping a Security Operations CenterDeveloping a Security Architecture ProgramCloud Security ConsiderationsInformation Security Best Practices