Synopses & Reviews
Are you an information security professional looking for a way to conduct network evaluations in a comprehensive and customized manner? Did you know that the National Security Agency has a methodology that they use and recommend? Security Evaluation was written by professionals who not only use this methodology themselves, but who helped develop and teach the course for the NSA.
Security Evaluation guides the experienced INFOSEC professional through a step-by-step process to ensure their customers receive the most accurate and comprehensive evaluation of their network security posture as possible. Security Evaluation is unique as it starts with the customer's information, not the technical tools to be used. In this way, the INFOSEC professional is able to ensure the results are relevant to the customer as opposed to delivering a standardized report, which may or may not directly affect or improve security posture. In addition, this framework will not only give the customer a sense of where they are, but also a way for both the service provider and customer to monitor and track progress over time using this repeatable methodology. Don't be misled by other books that focus only on technical tools. As an INFOSEC professional, you owe it to yourself and your customers to also have an understanding of how legislation, industry regulation, and legal issues affect you both. Network Security Evaluation Using the NSA IEM helps you put this all together and deliver a final product that the customer will actually understand and use.
Synopsis
Network Security Evaluation provides a methodology for conducting technical security evaluations of all the critical components of a target network. The book describes how the methodology evolved and how to define the proper scope of an evaluation, including the consideration of legal issues that may arise during the evaluation. More detailed information is given in later chapters about the core technical processes that need to occur to ensure a comprehensive understanding of the network’s security posture.
Ten baseline areas for evaluation are covered in detail. The tools and examples detailed within this book include both Freeware and Commercial tools that provide a detailed analysis of security vulnerabilities on the target network. The book ends with guidance on the creation of customer roadmaps to better security and recommendations on the format and delivery of the final report.
* There is no other book currently on the market that covers the National Security Agency's recommended methodology for conducting technical security evaluations
* The authors are well known in the industry for their work in developing and deploying network security evaluations using the NSA IEM
* The authors also developed the NSA's training class on this methodology
Synopsis
Network Security Evaluation provides a methodology for conducting technical security evaluations of all the critical components of a target network. The book describes how the methodology evolved and how to define the proper scope of an evaluation, including the consideration of legal issues that may arise during the evaluation. More detailed information is given in later chapters about the core technical processes that need to occur to ensure a comprehensive understanding of the network s security posture.
Ten baseline areas for evaluation are covered in detail. The tools and examples detailed within this book include both Freeware and Commercial tools that provide a detailed analysis of security vulnerabilities on the target network. The book ends with guidance on the creation of customer roadmaps to better security and recommendations on the format and delivery of the final report.
* There is no other book currently on the market that covers the National Security Agency's recommended methodology for conducting technical security evaluations
* The authors are well known in the industry for their work in developing and deploying network security evaluations using the NSA IEM
* The authors also developed the NSA's training class on this methodology
About the Author
Russ Rogers (CISSP, CISM, IAM, IEM, Hon. Sc.D.) is currently a penetration tester for a federal agency and the Co-Founder and Chief Executive Officer of Peak Security, Inc. Russ has been involved in Information Technology since 1980 and has spent the last 20 years working as both an IT and InfoSec consultant. Russ is a globally-renowned security expert, speaker and author who has presented at conferences around the world. He has been a hacker in the community for decades, and on staff as an organizer of DEF CON for the past 14 years.Greg Miles,(Ph.D., CISSP#24431, CISM#0300338, IAM, IEM)is the President, and Chief Financial Officer of Security Horizon, Inc. Security Horizon is a Global, Veteran-Owned Small Business headquartered in Colorado Springs, Colorado.
Corporate information and homeland security consultant
Table of Contents
Introduction to the IEM; Before You Start Evaluating; Setting Expectations; Scoping the Evaluation; Legal Planning Chapter; The Technical Evaluation Plan (TEP); Starting your On-Site Efforts; Enumeration Activities; Collecting the majority of vulnerabilities; Fine Tuning the Evaluation; On-Site Closing Meeting; Evaluation Analysis; Creating Measurements and Trending Results; Trending Metrics Chapter; Final Reporting Chapter; IEM Summary; Appendix A: Table of example tools for each of the 10 baseline activities; Appendix B: Sample TEP layout