Identity Attack Vectors Identity Attack Vectors

Identity Attack Vectors

Implementing an Effective Identity and Access Management Solution

Morey J. Haber و Darran Rolls
    • ‏34٫99 US$
    • ‏34٫99 US$

وصف الناشر

Discover how poor identity and privilege management can be leveraged to compromise accounts and credentials within an organization. Learn how role-based identity assignments, entitlements, and auditing strategies can be implemented to mitigate the threats leveraging accounts and identities and how to manage compliance for regulatory initiatives.

As a solution, Identity Access Management (IAM) has emerged as the cornerstone of enterprise security.  Managing accounts, credentials, roles, certification, and attestation reporting for all resources is now a security and compliance mandate. When identity theft and poor identity management is leveraged as an attack vector, risk and vulnerabilities increase exponentially. As cyber attacks continue to increase in volume and sophistication, it is not a matter of if, but when, your organization will have an incident. Threat actors target accounts, users, and their associated identities, to conduct their malicious activities through privileged attacks and asset vulnerabilities.

Identity Attack Vectors details the risks associated with poor identity management practices, the techniques that threat actors and insiders leverage, and the operational best practices that organizations should adopt to protect against identity theft and account compromises, and to develop an effective identity governance program.

You will:
Understand the concepts behind an identity and how their associated credentials and accounts can be leveraged as an attack vector
Implement an effective Identity Access Management (IAM) program to manage identities and roles, and provide certification for regulatory compliance
See where identity management controls play a part of the cyber kill chain and how privileges should be managed as a potential weak link
Build upon industry standards to integrate key identity management technologies into a corporate ecosystem
Plan for a successful deployment, implementation scope, measurable risk reduction, auditing and discovery, regulatory reporting, and oversight based on real-world strategies to prevent identity attack vectors

النوع
كمبيوتر وإنترنت
تاريخ النشر
٢٠١٩
١٧ ديسمبر
اللغة
EN
الإنجليزية
عدد الصفحات
٢١٩
الناشر
Apress
البائع
Springer Nature B.V.
الحجم
١٢٫٥
‫م.ب.‬

المزيد من الكتب المشابهة

Digital Identity Digital Identity
Digital Identity
٢٠٠٥
An Executive Guide to Identity Access Management - 2nd Edition An Executive Guide to Identity Access Management - 2nd Edition
An Executive Guide to Identity Access Management - 2nd Edition
٢٠١٨
Privileged Attack Vectors Privileged Attack Vectors
Privileged Attack Vectors
٢٠٢٠
Official (ISC)2 Guide to the CISSP CBK Official (ISC)2 Guide to the CISSP CBK
Official (ISC)2 Guide to the CISSP CBK
٢٠١٢
Identity Management Identity Management
Identity Management
٢٠١٢
Learning Digital Identity Learning Digital Identity
Learning Digital Identity
٢٠٢٣

المزيد من كتب Morey J. Haber & Darran Rolls

Asset Attack Vectors Asset Attack Vectors
Asset Attack Vectors
٢٠١٨
Cloud Attack Vectors Cloud Attack Vectors
Cloud Attack Vectors
٢٠٢٢
Privileged Attack Vectors Privileged Attack Vectors
Privileged Attack Vectors
٢٠١٧
Privileged Attack Vectors Privileged Attack Vectors
Privileged Attack Vectors
٢٠٢٠
Identity Attack Vectors Identity Attack Vectors
Identity Attack Vectors
٢٠٢٤