You CAN Stop Stupid. Ira Winkler
Читать онлайн книгу.More 11 The Kill Chain Kill Chain Principles Deconstructing the Cyber Kill Chain Other Models and Frameworks Applying Kill Chains to UIL 12 Total Quality Management Revisited TQM: In Search of Excellence Other Frameworks COVID-19 Remote Workforce Process Activated Applying Quality Principles
6 III: Countermeasures 13 Governance Defining the Scope of Governance for Our Purposes Traditional Governance Security and the Business Analyzing Processes Grandma's House 14 Technical Countermeasures Personnel Countermeasures Physical Countermeasures Operational Countermeasures Cybersecurity Countermeasures Nothing Is Perfect Putting It All Together 15 Creating Effective Awareness Programs What Is Effective Awareness? Governance as the Focus Where Awareness Strategically Fits in the Organization The Goal of Awareness Programs Changing Culture Defining Subcultures Interdepartmental Cooperation The Core of All Awareness Efforts Metrics Gamification Getting Management's Support Enforcement Experiment
7
IV: Applying Boom
16 Start with Boom
What Are the Actions That Initiate UIL?
Metrics
Governance
Awareness
Feeding the Cycle
Stopping Boom
17 Right of Boom
Repeat as Necessary
What Does Loss Initiation Look Like?
What Are the Potential Losses?
Preventing the Loss
Detecting the Loss
Mitigating the Loss
Determining Where to Mitigate
Avoiding Analysis Paralysis
Your Last Line of Defense
18 Preventing Boom
Why Are We Here?
Reverse Engineering
Step-by-Step
19 Determining the Most Effective Countermeasures
Early Prevention vs. Response
Start with Governance
Prioritize Potential Loss
Define Governance Thoroughly
Matrix Technical Countermeasures
Define Awareness
It's Just a Start
20 Implementation Considerations
You've Got Issues
Business Case for a Human Security Officer
It Won't Be Easy
21 If You Have Stupid Users, You Have a Stupid System
A User Should Never Surprise You
Perform Some More Research
Start Somewhere
Take Day Zero Metrics
UIL Mitigation Is a Living Process
Grow from Success
The Users Are Your