Part 3: Protecting, Detecting, and Responding for Windows Environments
This concluding section will focus on proactive methods of protecting Windows endpoints, along with giving an insight into Security Operations (SecOps) for Windows-based environments. We will begin the section with a detailed review of the monitoring options available for Windows environments and a study of the various reporting capabilities. You will then learn about SecOps, with a primary focus on the cloud-based Microsoft technologies used to continually monitor Windows systems. After that, we will have an overview of security testing and auditing to ensure no gaps exist within your Windows environment and the configuration of endpoints. We will finish the section with our thoughts about the top security recommendations you should focus on as part of your Windows security program.
This part of the book comprises the following chapters:
- Chapter 13, Security Monitoring and Reporting
- Chapter 14, Security Operations
- Chapter 15, Testing and Auditing
- Chapter 16, Top 10 Recommendations and the Future