Overview
CISO's Guide to Penetration Testing: A Framework to Plan, Manage, and Maximize Benefits details the methodologies, framework, and unwritten conventions penetration tests should cover to provide the most value to your organization and your customers. Discussing the process from both a consultative and technical perspective, it provides an overview of the common tools and exploits used by attackers along with the rationale for why they are used. From the first meeting to accepting the deliverables and knowing what to do with the results, James Tiller explains what to expect from all phases of the testing life cycle. He describes how to set test expectations and how to identify a good test from a bad one. He introduces the business characteristics of testing, the imposed and inherent limitations, and describes how to deal with those limitations. The book outlines a framework for protecting confidential information and security professionals during testing. It covers social engineering and explains how to tune the plethora of options to best use this investigative tool within your own environment. Ideal for senior security management and anyone else responsible for ensuring a sound security posture, this reference depicts a wide range of possible attack scenarios. It illustrates the complete cycle of attack from the hacker’s perspective and presents a comprehensive framework to help you meet the objectives of penetration testing—including deliverables and the final report.
Full Product Details
Author: James S. Tiller
Publisher: Taylor & Francis Ltd
Imprint: CRC Press
Weight: 0.585kg
ISBN: 9780367382001
ISBN 10: 0367382008
Pages: 389
Publication Date: 30 June 2020
Audience:
Professional and scholarly
,
Professional & Vocational
Format: Paperback
Publisher's Status: Active
Availability: Manufactured on demand
We will order this item for you from a manufactured on demand supplier.
Reviews
Staying in front of the bad guys and sometimes protecting yourself from the brain-dead acts in corporate environments are keys to successful security measures. Tiller teaches on the simplicity of security, breaking it down from smoke and mirrors to time-proven measures.... I have enjoyed reading Tiller's books in the past; his approach and ability to break down what is sometimes made to look like a complicated structure allows for not only a better understanding but a framework that is able to stand the test of time. -- Jeffrey Schmidt, Global Head Business Continuity, Security, and Governance, BT Global Services
Author Information
James S. Tiller is the Vice-President of Security Professional Services, North American BT Global Services.
