It is also important that we establish a common language to avoid confusion. Even a word as fundamental as security can have different meanings to different, equally qualified security professionals. Although some definitions and interpretations might be more commonly used, none are inherently right or wrong.

Additionally, we performed extensive research to enhance our own knowledge bases. This research involved nation-state cyberwarfare strategies, as well as talking to people who run some of the best security programs in the industry. We both came away with new foundations that helped us to evolve our thought processes and recommendations that we give others. We are excited to share that with our readers.

Although some readers may already have a firm understanding of the content in this section, we want to ensure that we do not make assumptions about every potential reader's base level of knowledge. Therefore, providing a base of common knowledge allows readers to exercise common sense. It also creates an environment that allows people to implement strong security programs that are resilient to successful and unsuccessful attacks against their organization.