Building a Cybersecurity Program

This book enables security professionals to build a cybersecurity program from the ground up, regardless of the size of their organization. The book includes a high-level, comprehensive overview of all of the capabilities that go into a cybersecurity program (e.g., threat management, incident management, vulnerability management) and helps readers to determine which capabilities must be matured first and to what maturity level based on the risks that their organization faces. The book addresses methods for performing rapid risk assessments at early stages of cybersecurity program development. It also discusses key capabilities that should form the foundation to any cybersecurity program.