Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, authenticity, or access to any online entitlements included with the product.
Master the latest digital security automation technologies
Achieve a unified view of security across your IT infrastructure using the cutting-edge techniques contained in this authoritative volume. Security Automation Essentials: Streamlined Enterprise Security Management & Monitoring with SCAP lays out comprehensive technical, administrative, and operational strategies for security management. Discover how to define baseline requirements, automatically confirm patches and updates, identify vulnerabilities, write customized auditing content, and evaluate compliance across your enterprise. Throughout, the authors provide detailed case studies and tips on selecting appropriate security components.
Understand SCAP (Security Content Automation Protocol) technologies and standards
Track compliance using benchmarks and scoring systems
Build machine-readable configuration checks using XCCDF, OVAL, and OCIL
Perform vulnerability assessments and find misconfiguration
Maximize product interoperability through the use of standard enumeration
Assess and monitor residual risk using CVSS values
Use SCAP editors and XML to create and debug automated checks
Accurately assess threats using software assurance automation
Greg Witte leads the U.S. Federal civilian customer support team at G2, Inc., a security firm committed to solving the most complex challenges related to the ability of the U.S. to collect, utilize, and defend digital information. Melanie Cook is an information systems engineer at G2, Inc. She previously worked at the National Security Agency and at the National Institute of Standards and Technology where she contributed to SCAP efforts. Matt Kerr is G2's Director of Research and Development. He helped develop the DISA Gold Disk application, the primary compliance assessment utility for Department of Defense systems. Shane Shaffer is the Technical Director of Security Automation for G2. He served as the lead architect of the Department of Defense's Vulnerability Management System and has been a key contributor to the development of SCAP.
Ch 1. Introduction Ch 2. What Is SCAP Ch 3. SCAP Languages Ch 4. SCAP Enumerations (with case study) Ch 5. SCAP Vulnerability Measurement (with case study) Ch 6. Putting the Pieces Together (with case study) Ch 7. Using SCAP In Your Enterprise (with case study) Ch 8. Emerging SCAP Technologies Ch 9. Conclusion Appendices Index