About the Book
This book covers knowledge and skills needed to successfully handle the tasks, duties, and responsibilities of an associate-level Security Analyst working in a Security Operations Center. It provides basic knowledge vital for grasping enterprise security operations and threat mitigation. This book clarifies the duties of the Cybersecurity Operations Analyst inside a company as well as the required qualities and features of the Windows Operating System that support efficient cybersecurity investigations. The authors also investigates the operation and structure of network infrastructure, categorizing the different types of network attacks, and looking at the functionality of important network protocols and services.
This book outlines methods to stop illegal access to data, hosts, and computer networks; looks at how cryptography affects network security monitoring; and investigates how network monitoring tools can identify attacks on network protocols and services, so promoting a thorough knowledge of proactive and reactive security strategies. The authors discuss the approaches for investigating attacks and endpoint vulnerabilities as well as the process for evaluating network security alerts. It provides readers the analytical tools they need to find, assess, and react to threats directed at endpoint devices. Examining network intrusion data to find compromised hosts and vulnerabilities, this book presents the use of incident response frameworks to control and supervise network security events. It also illustrates how to use virtual computers to generate safe environments for the execution and examination of cybersecurity threat scenarios, so facilitating hands-on, practical interaction with contemporary defense tactics.
This book targets IT professionals who want to pursue a career in the Security Operation Center (SOC). Engineers working within Software Design and Development as well as Cyber Security operations and Cyber Physical System domain will want to purchase this book. It’s also designed for Cisco Networking Academy® students, who are seeking career oriented, entry-level security analyst skills.
Table of Contents:
Chapter 1: The Danger & Fighters in the War Against Cybercrime.- Chapter 2: The Windows Operating System, Linux Overview.- Chapter 3: Network Protocols, Ethernet and IP Protocol, Connectivity Verification, Address Resolution Protocol.- Chapter 4: The Transport Layer, Network Services, Network Communication Devices.- Chapter 5: Network Security Infrastructure, Attackers and Their Tools, Common Threats and Attacks Network Monitoring and Tools.- Chapter 6: Attacking the Foundation, Attacking What We Do, Understanding Defense.- Chapter 7: Access Control, Threat Intelligence.- Chapter 8: Public Key Cryptography, Endpoint Protection, Endpoint Vulnerability Assessment.- Chapter 9: Technologies and Protocols, Network Security Data.- Chapter 10: Evaluating Alerts, Working with Network Security Data, Incident Response Models.
About the Author :
Dr. B. Rajkumar, IEEE senior member, Cyber Security Operations Certified Trainer, working as an Associate Professor in Computer Science Department at University of Texas San Antonio, Texas, USA. He pursued Bachelor of Technology from National Institute of Technology (NIT), Hamirpur, Himachal Pradesh, in Computer Science & Engineering. He pursued Master of Technology and PhD from Jawaharlal Nehru Technological University (JNTUH), Hyderabad, Telangana, in Computer Science & Engineering.
He has published nine textbooks in Networking, Computer Organization and Architecture, Computer Forensic and Machine Learning. He published and granted three patents, Nationally and Internationally.
He is an editorial board member of various publishing house as well as invitee speaker for many conferences, published many Hi-indexed SCI and Scopus Journals and Presented many Conference papers. Along with having membership in SIGCSE ,ACM,“The Institution of Engineers (India)”, “Indian Society for Technical Education (LM-ISTE)”, “Computer Society of India (M-CSI)”, and “Research Gate”.
Aruna Kranthi Godishala is a Ph.D. Research Scholar of Systems Engineering, Faculty of Integrated Technologies at Universiti Brunei Darussalam, and obtained her B.Tech. in Computer Science and Engineering and an M.Tech. in Software Engineering from Jawaharlal Nehru Technological University, Hyderabad, India. She worked as an Assistant Professor and Associate Professor at various engineering institutions in India.
She has been an administrator for Infosys Campus Connect, IBM Center of Excellence, and Center of Excellence for AI ML with Python at the institutional level. She has 2 funded projects under the All-India Council for Technical Education, Government of India (SPICES and MODROBS). She has a granted patent with each of the Indian Patent Office and the Australian IP Patent Office. The United States Patent and Trademark Office has published a patent. Ms. Arunakranthi also published 5 textbooks, one with Taylor & Francis CRC Press. In recent years, she has published papers at IEEE and ACM conferences, as well as several in journals, including a few in Springer Nature. She is also a reviewer for many journals and has received recognition from Elsevier's Computers in Biology and Medicine Journal.
