| 000 | 02387nam a2200229 4500 | ||
|---|---|---|---|
| 005 | 20250806151041.0 | ||
| 008 | 250806b2021|||||||| |||| 00| 0 eng d | ||
| 020 | _a9781119622062 | ||
| 041 | _aEnglish | ||
| 082 | _a005.88 | ||
| 100 |
_aWinkler, Ira _eAuthor _97472 |
||
| 100 |
_aBrown, Tracy Celaya _eCo-Author _97473 |
||
| 245 | _aYou CAN stop stupid: stopping losses from accidental and malicious actions | ||
| 260 |
_aNew Jersey: _bWiley Data and Cybersecurity, _c2021. |
||
| 300 | _axxxii, 335p. | ||
| 500 | _aStopping Losses from Accidental and Malicious Actions Around the world, users cost organizations billions of dollars due to simple errors and malicious actions. They believe that there is some deficiency in the users. In response, organizations believe that they have to improve their awareness efforts and making more secure users. This is like saying that coalmines should get healthier canaries. The reality is that it takes a multilayered approach that acknowledges that users will inevitably make mistakes or have malicious intent, and the failure is in not planning for that. It takes a holistic approach to assessing risk combined with technical defenses and countermeasures layered with a security culture and continuous improvement. Only with this kind of defense in depth can organizations hope to prevent the worst of the cybersecurity breaches and other user-initiated losses. Using lessons from tested and proven disciplines like military kill-chain analysis, counterterrorism analysis, industrial safety programs, and more, Ira Winkler and Dr. Tracy Celaya's You CAN Stop Stupid provides a methodology to analyze potential losses and determine appropriate countermeasures to implement. Minimize business losses associated with user failings Proactively plan to prevent and mitigate data breaches Optimize your security spending Cost justify your security and loss reduction efforts Improve your organization’s culture Business technology and security professionals will benefit from the information provided by these two well-known and influential cybersecurity speakers and experts. | ||
| 650 |
_aThe Problems with Awareness Efforts _97474 |
||
| 650 |
_aProtection, Detection, and Reaction _97475 |
||
| 650 |
_aSecurity Culture and Behavior _97476 |
||
| 856 | _uhttps://ieeexplore.ieee.org/servlet/opac?bknumber=9820851 | ||
| 942 | _cEB | ||
| 999 |
_c1840 _d1840 |
||