- STAFF PICKS
- GIFTS + GIFT CARDS
- SELL BOOKS
- FIND A STORE
Sale Trade Paper
Ships in 1 to 3 days
Other titles in the Networking Technology: Security series:
Computer Incident Response and Product Security (Networking Technology: Security)by Damir Rajnovic
Out of Print
Synopses & Reviews
Computer Incident Response
and Product Security
The practical guide to building and running incident response and product security teams
Organizations increasingly recognize the urgent importance of effective, cohesive, and efficient security incident response. The speed and effectiveness with which a company can respond to incidents has a direct impact on how devastating an incident is on the company’s operations and finances. However, few have an experienced, mature incident response (IR) team. Many companies have no IR teams at all; others need help with improving current practices. In this book, leading Cisco incident response expert Damir Rajnovi´c presents start-to-finish guidance for creating and operating effective IR teams and responding to incidents to lessen their impact significantly.
Drawing on his extensive experience identifying and resolving Cisco product security vulnerabilities, the author also covers the entire process of correcting product security vulnerabilities and notifying customers. Throughout, he shows how to build the links across participants and processes that are crucial to an effective and timely response.
This book is an indispensable resource for every professional and leader who must maintain the integrity of network operations and products—from network and security administrators to software engineers, and from product architects to senior security executives.
-Determine why and how to organize an incident response (IR) team
-Learn the key strategies for making the case to senior management
-Locate the IR team in your organizational hierarchy for maximum effectiveness
-Review best practices for managing attack situations with your IR team
-Build relationships with other IR teams, organizations, and law enforcement to improve incident response effectiveness
-Learn how to form, organize, and operate a product security team to deal with product vulnerabilities and assess their severity
-Recognize the differences between product security vulnerabilities and exploits
-Understand how to coordinate all the entities involved in product security handling
-Learn the steps for handling a product security vulnerability based on proven Cisco processes and practices
-Learn strategies for notifying customers about product vulnerabilities and how to ensure customers are implementing fixes
This security book is part of the Cisco Press Networking Technology Series. Security titles from Cisco Press help networking professionals secure critical data and resources, prevent and mitigate network attacks, and build end-to-end, self-defending
Learn how to build a Security Incident Response team with guidance from a leading SIRT from Cisco
Network Security Incident Response provides practical guidelines for building an SIRT team as well offering advice on responding to actual incidents. For many companies, incident response is new territory. Some companies do not have an incidence response team at all. Some would like to have one but need guidance to start and others would like to improve existing practices. Today, there are only a handful of organizations that do have mature and experienced teams. For that reason this book is structured to provide help in both creating and running an effective Security Incident Response Team. Organizations who are evaluating whether to invest in a SIRT or who are just getting started building one will find the information in this book to be invaluable in helping them understand the nature of the threats, justifying resources, and building effective IR (Incidence Response) teams. Established IR teams will also benefit from the best practices highlighted in building IR teams as well as information on the current state of incident response handling, incident coordination, and legal issues. Written by a leading SIRT (Security Incident Response Team) from Cisco, the expertise and guidance provided in this book will serve as the blueprint for successful incidence response planning for most any organization.
About the Author
Damir Rajnovic works on the Cisco PSIRT team where he handles customer's security incidents and security vulnerabilities in all Cisco products. In 1995 he formed CARNet CERT (Croatian Academic and Educational Network).
Mike Caudill is a Product Security Incident Manager on the Cisco PSIRT team. Mike has a B.S. in Mechanical Engineering and a Certificate in Computer Science from N.C. State University.
Table of Contents
Chapter 1. Why care about incident response?
Chapter 2. Motivation for attacks
Chapter 3. Economy of attacks, underground perspective
Chapter 4. Types of attacks
Chapter 5. Forming an IRT
Chapter 6. Operating an IRT
Chapter 7. Dealing with an attack
Chapter 8. Incident coordination
Chapter 9. Getting to know your peers
Chapter 10. Product Security Vulnerabilities
Chapter 11. Creating a product security team
Chapter 12. Operating a product security team
Chapter 13. Actors in a vulnerability handling
Chapter 14. Security vulnerability by vendors
Chapter 15. Security vulnerability notification
Chapter 16. Vulnerability coordination
What Our Readers Are Saying
Business » Communication