Defense in Depth: An Impractical Strategy for a Cyber-World

Nonfiction, Computers, Networking & Communications, Computer Security, Operating Systems, Application Software
Cover of the book Defense in Depth: An Impractical Strategy for a Cyber-World by Prescott Small, Prescott Small
View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart
Author: Prescott Small ISBN: 9781465791894
Publisher: Prescott Small Publication: January 31, 2012
Imprint: Smashwords Edition Language: English
Author: Prescott Small
ISBN: 9781465791894
Publisher: Prescott Small
Publication: January 31, 2012
Imprint: Smashwords Edition
Language: English

Businesses and Information Technology Security Professionals have spent a tremendous amount of time, money and resources to deploy a Defense in Depth approach to Information Technology Security. Yet successful attacks against RSA, HB Gary, Booz, Allen & Hamilton, the United States Military, and many others are examples of how Defense in Depth, as practiced, is unsustainable and the examples show that the enemy cannot be eliminated permanently. A closer look at how Defense in Depth evolved and how it was made to fit within Information Technology is important to help better understand the trends seen today. Knowing that Defense in Depth, as practiced, actually renders the organization more vulnerable is vital to understanding that there must be a shift in attitudes and thinking to better address the risks faced in a more effective manner. Based on examples in this paper, a change is proposed in the current security and risk management models from the Defense in Depth model to Sustained Cyber-Siege Defense. The implications for this are significant in that there have to be transitions in thinking as well as how People, Process and Technology are implemented to better defend against a never ending siege by a limitless number and variety of attackers that cannot be eliminated. The suggestions proposed are not a drastic change in operations as much as how defenses area aligned, achieve vendor collaboration by applying market pressures and openly sharing information with each other as well as with federal and state agencies. By more accurately describing the problems, corporations and IT Security Professionals will be better equipped to address the challenges faced together.

View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart

Businesses and Information Technology Security Professionals have spent a tremendous amount of time, money and resources to deploy a Defense in Depth approach to Information Technology Security. Yet successful attacks against RSA, HB Gary, Booz, Allen & Hamilton, the United States Military, and many others are examples of how Defense in Depth, as practiced, is unsustainable and the examples show that the enemy cannot be eliminated permanently. A closer look at how Defense in Depth evolved and how it was made to fit within Information Technology is important to help better understand the trends seen today. Knowing that Defense in Depth, as practiced, actually renders the organization more vulnerable is vital to understanding that there must be a shift in attitudes and thinking to better address the risks faced in a more effective manner. Based on examples in this paper, a change is proposed in the current security and risk management models from the Defense in Depth model to Sustained Cyber-Siege Defense. The implications for this are significant in that there have to be transitions in thinking as well as how People, Process and Technology are implemented to better defend against a never ending siege by a limitless number and variety of attackers that cannot be eliminated. The suggestions proposed are not a drastic change in operations as much as how defenses area aligned, achieve vendor collaboration by applying market pressures and openly sharing information with each other as well as with federal and state agencies. By more accurately describing the problems, corporations and IT Security Professionals will be better equipped to address the challenges faced together.

More books from Application Software

Cover of the book Écriture by Prescott Small
Cover of the book Office 2019 For Seniors For Dummies by Prescott Small
Cover of the book Microsoft Dynamics NAV 2013 Application Design by Prescott Small
Cover of the book The Digitization of Healthcare by Prescott Small
Cover of the book Practical and Efficient SAS Programming by Prescott Small
Cover of the book How to Make a Free Website by Prescott Small
Cover of the book Exercises and Projects for The Little SAS Book, Fifth Edition by Prescott Small
Cover of the book Das Kinopublikum im Zeitalter des Internet-Streamings. Ein Forschungsbericht by Prescott Small
Cover of the book Die Veränderung des Textbegriffes und die Zukunft des Buches im Hinblick auf die Entwicklung hypertextueller Strukturen by Prescott Small
Cover of the book Designer's Apprentice by Prescott Small
Cover of the book Research in Attacks, Intrusions, and Defenses by Prescott Small
Cover of the book Excel 2016 Paso a Paso by Prescott Small
Cover of the book The Complete Idiot's Guide to Facebook, 3rd Edition by Prescott Small
Cover of the book Untersuchungsmethoden von Web-Usability: ein kurzer Überblick by Prescott Small
Cover of the book Reconfigurable Computing by Prescott Small
We use our own "cookies" and third party cookies to improve services and to see statistical information. By using this website, you agree to our Privacy Policy