PREFACE

Cybersecurity has moved from the confines of academia to mainstream America in the twenty-first century. Data breaches, information disclosures, and high-profile hacks involving the theft of information and intellectual property seem to be a regular staple of the news. It has become increasingly obvious to everybody that something needs to be done to secure not only our nation’s critical infrastructure but also the businesses we deal with on a daily basis. The question is, “Where do we begin?” What can the average information technology professional do to secure the systems they are hired to maintain? One immediate answer is education and training. If we want to secure our computer systems and networks, we need to know how to do this and what security entails.

Our way of life—from commerce to messaging, business communications, and even social media—depends on the proper functioning of our worldwide infrastructure. A common thread throughout the infrastructure is technology—especially technology related to computers and communication. Thus, any individual, organization, or nation-state that wants to cause damage to this nation could attack it, not just with traditional weapons, but with computers through the Internet. Complacency is not an option in today’s hostile network environment. The protection of our networks and systems is not the sole domain of the information security professional, but rather the responsibility of all who are involved in the design, development, deployment, and operation of the systems that are nearly ubiquitous in our daily lives. With virtually every system we depend on daily at risk, the attack surface and corresponding risk profile are extremely large. Information security has matured from a series of technical issues to a comprehensive risk management problem, and this book provides the foundational material to engage in the field in a professional manner.

So, where do you, the IT professional seeking more knowledge on security, start your studies? This book offers a comprehensive review of the underlying foundations and technologies associated with securing our systems and networks. The IT world is overflowing with certifications that can be obtained by those attempting to learn more about their chosen profession. The information security sector is no different, and the CompTIA Security+ exam offers a solid introductory level of certification for security. In the pages of this book you will find not only material that can help you prepare for taking the CompTIA Security+ exam but also the basic information you will need in order to understand the issues involved in securing your computer systems and networks today. In no way is this book the final source for learning all about protecting your organization’s systems, but it serves as a starting point from which to launch your security studies and career.

One thing is certainly true about this field of study: it never gets boring. It constantly changes as technology itself advances. Something else you will find as you progress in your security studies is that no matter how much technology advances and no matter how many new security devices are developed, at the most basic level, humans are still the weak link in the security chain. If you are looking for an exciting area to delve into, then you have certainly chosen wisely. Cybersecurity offers a challenging blend of technology and people issues. And securing the systems of tomorrow will require everyone to work together—not just security personnel, but developers, operators, and users alike. We, the authors of this book, wish you luck as you embark on an exciting and challenging career path.

Wm. Arthur Conklin, PhD

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.
Reset
52.207.218.95