Building an Effective Cybersecurity Program

Building an Effective Cybersecurity Program

Tari Schreider C|CISO, CRISC, ITIL® Foundation, MCRP, SSCP 2nd Edition

Why a Second Edition?

Two years after writing the first edition of this book I take full measure
of all that has evolved in the cybersecurity world. Increasing zero-day
attacks, growth of state-sponsored adversaries and consolidation of
cybersecurity products and services all converged to shape where
we are today. We have also witnessed some of the world’s largest
Building an
I have always envisioned keeping this book regularly
updated to ensure you would have a reliable cybersecurity
reference source. I see this book as a forum to express
my views on protecting assets and information. I also see
it as a way to share what I learn through teaching Chief

data breach events, increasingly destructive ransomware attacks
and changes in legal and regulatory statutes. Along with substantial
updates of standards, source links and cybersecurity products here is
what’s new in this second edition:
Effective
Information Security Officers (CISOs). Teaching affords me
a platform to learn how some of the largest companies in
the world address cybersecurity. I look forward to sharing
future updates with you.

Cybersecurity
Sincerely, Tari Schreider
„„ Each chapter provides a roadmap of specific actions designed to
improve your cybersecurity program.
„„ 50+ callout boxes highlighting cyberattacks and important resources.
„„ 60 self-study questions to hone your knowledge.

Program
„„ 25 overviews of cybersecurity technologies.
„„ Expanded coverage of the intersection of cybersecurity and privacy.
„„ Expanded coverage of security training strategies.
„„ A new security talent development section.
„„ Discussion of cyber insurance policies.

2nd
„„ A new security testing strategies section.

2nd Edition
„„ New adversary profiles.
„„ Expansion of attack surface discussion. Tari Schreider, C|CISO, CRISC, ITIL® Foundation,

Edition
MCRP, SSCP is a distinguished technologist and nationally
„„ Inclusion of new threat frameworks. known expert in the fields of cybersecurity, risk management,
„„ Inclusion of a service management catalog. and disaster recovery. He was formerly Chief Security Architect
at Hewlett-Packard Enterprise and is an instructor for EC-
„„ Introduction to emerging cybersecurity technologies.
Council where he teaches advanced CISO certification and risk

Tari Schreider
„„ 17 powerful templates to document your cybersecurity program. management courses.

Tari Schreider
www.rothsteinpublishing.com
info@rothstein.com
C|CISO, CRISC, ITIL® Foundation,
twitter.com/RothsteinPub MCRP, SSCP
facebook.com/RothsteinPublishing
linkedin.com/company/rothstein-associates-inc.
Rothstein Publishing is your premier source of books and learning materials about Business Resilience – including Business Continuity,
Disaster Recovery, and Risk, Crisis, and Emergency Management. Our industry-leading authors provide current, actionable knowledge,
solutions, and tools you can put into practice immediately. Founded in 1984 by Philip Jan Rothstein, FBCI, our company remains true to our
commitment to prepare you and your organization to protect, preserve, and recover what is most important: your people, facilities, assets,
and reputation. Rothstein Publishing is a division of Rothstein Associates Inc., an international management consultancy.