Join Books.org — it's free
Home > Books > The Ethical Hack: A Framework for Business Value Penetration Testing

Enterprise Networks, Security - Computer Networks, Business Technology - Networks
The Ethical Hack: A Framework for Business Value Penetration Testing by James S. Tiller β€” book cover

The Ethical Hack: A Framework for Business Value Penetration Testing

by James S. Tiller, Tiller S. Tiller
Available on Bookshop Write a review

Books.org participates in affiliate programs including Bookshop.org and the Amazon Services LLC Associates Program. We may earn a commission from qualifying purchases made through links on this page, at no additional cost to you.

Log in to track your reading progress.

Overview

There are many books that detail tools and techniques of penetration testing, but none of these effectively communicate how the information gathered from tests should be analyzed and implemented. Until recently, there was very little strategic information available to explain the value of ethical hacking and how tests should be performed in order to provide a company with insight beyond a mere listing of security vulnerabilities. Now there is a resource that illustrates how an organization can gain as much value from an ethical hack as possible.

The Ethical Hack: A Framework for Business Value Penetration Testing explains the methodologies, framework, and "unwritten conventions" that ethical hacks should employ to provide the maximum value to organizations that want to harden their security. This book is unique in that it goes beyond the technical aspects of penetration testing to address the processes and rules of engagement required for successful tests. It examines testing from a strategic perspective, shedding light on how testing ramifications affect an entire organization.

Security practitioners can use this resource to reduce their exposure and deliver a focused, valuable service to customers. Organizations will learn how to align the information about tools, techniques, and vulnerabilities that they gathered from testing with their overall business objectives.

Synopsis

There are many books that detail tools and techniques of penetration testing, but none of these effectively communicate how the information gathered from tests should be analyzed and implemented. Until recently, there was very little strategic information available to explain the value of ethical hacking and how tests should be performed in order to provide a company with insight beyond a mere listing of security vulnerabilities. Now there is a resource that illustrates how an organization can gain as much value from an ethical hack as possible.

The Ethical Hack: A Framework for Business Value Penetration Testing explains the methodologies, framework, and "unwritten conventions" that ethical hacks should employ to provide the maximum value to organizations that want to harden their security. This book is unique in that it goes beyond the technical aspects of penetration testing to address the processes and rules of engagement required for successful tests. It examines testing from a strategic perspective, shedding light on how testing ramifications affect an entire organization.

Security practitioners can use this resource to reduce their exposure and deliver a focused, valuable service to customers. Organizations will learn how to align the information about tools, techniques, and vulnerabilities that they gathered from testing with their overall business objectives.

Reviews

There are no reviews yet. Log in to write one.

Book Details

Published
August 1, 2004
Publisher
Taylor & Francis, Inc.
Pages
352
Format
Hardcover
ISBN
9780849316098

More by James S. Tiller

A technical guide to IPSec virtual private networks
A technical guide to IPSec virtual private networks
Ethical Hack
Ethical Hack
Technical Guide to IPSec Virtual Private Networks
Technical Guide to IPSec Virtual Private Networks

Similar books

Information Security and Employee Behaviour: How to Reduce Risk Through Employee Education, Training and Awareness
Information Security and Employee Behaviour: How to Reduce Risk Through Employee Education, Training and Awareness
Security Metrics: Replacing Fear, Uncertainty, and Doubt (Symantec Press Series)
Security Metrics: Replacing Fear, Uncertainty, and Doubt (Symantec Press Series)
Impacts and Risk Assessment of Technology for Internet Security
Impacts and Risk Assessment of Technology for Internet Security
Trust and New Technologies: Marketing and Management on the Internet and Mobile Media
Trust and New Technologies: Marketing and Management on the Internet and Mobile Media
The Expert Guide To Peoplesoft Security
The Expert Guide To Peoplesoft Security
IT Governance: A Manager's Guide to Data Security and ISO 27001 / ISO 27002
IT Governance: A Manager's Guide to Data Security and ISO 27001 / ISO 27002
Enterprise Information Security and Privacy
Enterprise Information Security and Privacy
International IT Governance: An Executive Guide to ISO 17799/ISO 27001
International IT Governance: An Executive Guide to ISO 17799/ISO 27001
Information Security Governance: Design, Implementation, Measurement & Compliance
Information Security Governance: Design, Implementation, Measurement & Compliance
IT Governance: A Manager's Guide to Data Security and BS 7799/ ISO 17799
IT Governance: A Manager's Guide to Data Security and BS 7799/ ISO 17799