Nam Nguyen - Essential Cyber Security Handbook

The Essential Cyber Security Handbook is a great resource anywhere you go; it presents the most current and leading edge research on system safety and security. You do not need to be a cyber-security expert to protect your information. There are people out there whose main job it is trying to steal personal and financial information. Are you worried about your online safety but you do not know where to start? So this handbook will give you, students, scholars, schools, corporates, businesses, governments and technical decision-makers the necessary knowledge to make informed decisions on cyber security at home or at work.

5 Questions CEOs Should Ask About Cyber Risks, 8 Most Common Internet Security Issues You May Face, Avoiding Copyright Infringement, Avoiding Social Engineering and Phishing Attacks, Avoiding the Pitfalls of Online Trading, Banking Securely Online, Basic Security Concepts, Basics of Cloud Computing, Before You Connect a New Computer to the Internet, Benefits and Risks of Free Email Services, Benefits of BCC, Browsing Safely - Understanding Active Content and Cookies, Choosing and Protecting Passwords, Common Risks of Using Business Apps in the Cloud, Coordinating Virus and Spyware Defense, Cybersecurity for Electronic Devices, Data Backup Options, Dealing with Cyberbullies, Debunking Some Common Myths, Defending Cell Phones and PDAs Against Attack, Disposing of Devices Safely, Effectively Erasing Files, Evaluating Your Web Browser's Security Settings, Good Security Habits, Guidelines for Publishing Information Online, Handling Destructive Malware, Holiday Traveling with Personal Internet-Enabled Devices, Home Computer and Internet security, How Anonymous Are You, How to stop most of the adware tracking cookies Mac, Windows and Android, Identifying Hoaxes and Urban Legends, Keeping Children Safe Online, Playing it Safe - Avoiding Online Gaming Risks, Prepare for Heightened Phishing Risk Tax Season, Preventing and Responding to Identity Theft, Privacy and Data Security, Protect Your Workplace, Protecting Aggregated Data, Protecting Portable Devices - Data Security, Protecting Portable Devices - Physical Security, Protecting Your Privacy, Questions Bank Leaders, Real-World Warnings Keep You Safe Online, Recognizing and Avoiding Email Scams, Recognizing and Avoiding Spyware, Recognizing Fake Antiviruses, Recovering from a Trojan Horse or Virus, Recovering from Viruses, Worms, and Trojan Horses, Reducing Spam, Reviewing End-User License Agreements, Risks of File-Sharing Technology, Safeguarding Your Data, Securing Voter Registration Data, Securing Wireless Networks, Securing Your Home Network, Shopping Safely Online, Small Office or Home Office Router Security, Socializing Securely - Using Social Networking Services, Software License Agreements - Ignore at Your Own Risk, Spyware Home, Staying Safe on Social Networking Sites, Supplementing Passwords, The Risks of Using Portable Devices, Threats to mobile phones, Understanding and Protecting Yourself Against Money Mule Schemes, Understanding Anti-Virus Software, Understanding Bluetooth Technology, Understanding Denial-of-Service Attacks, Understanding Digital Signatures, Understanding Encryption, Understanding Firewalls, Understanding Hidden Threats - Rootkits and Botnets, Understanding Hidden Threats Corrupted Software Files, Understanding Internationalized Domain Names, Understanding ISPs, Understanding Patches, Understanding Voice over Internet Protocol (VoIP), Understanding Web Site Certificates, Understanding Your Computer - Email Clients, Understanding Your Computer - Operating Systems, Understanding Your Computer - Web Browsers, Using Caution with Email Attachments, Using Caution with USB Drives, Using Instant Messaging and Chat Rooms Safely, Using Wireless Technology Securely, Why is Cyber Security a Problem, Why Secure Your Browser, and Glossary of Cybersecurity Terms.
A thank you to my wonderful wife Beth (Griffo) Nguyen and my amazing sons Taylor Nguyen and Ashton Nguyen for all their love and support, without their emotional support and help, none of these educational language eBooks and audios would be possible.

5 Questions CEOs Should Ask About Cyber Risks

Cyber threats constantly evolve with increasing intensity and complexity. The ability to achieve mission objectives and deliver business functions is increasingly reliant on information systems and the Internet, resulting in increased cyber risks that could cause severe disruption to a companys business functions or operational supply chain, impact reputation, or compromise sensitive customer data and intellectual property.

5 Questions CEOs Should Ask About Cyber Risks

1) How Is Our Executive Leadership Informed About the Current Level and Business Impact of Cyber Risks to Our Company?

2) What Is the Current Level and Business Impact of Cyber Risks to Our Company? What Is Our Plan to Address Identified Risks?

3) How Does Our Cybersecurity Program Apply Industry Standards and Best Practices?

4) How Many and What Types of Cyber Incidents Do We Detect In a Normal Week? What is the Threshold for Notifying Our Executive Leadership?

5) How Comprehensive Is Our Cyber Incident Response Plan? How Often Is It Tested?

Key Cyber Risk Management Concepts

Incorporate cyber risks into existing risk management and governance processes.

Cybersecurity is NOT implementing a checklist of requirements; rather it is managing cyber risks to an acceptable level. Managing cybersecurity risk as part of an organizations governance, risk management, and business continuity frameworks provides the strategic framework for managing cybersecurity risk throughout the enterprise.

Elevate cyber risk management discussions to the CEO.

CEO engagement in defining the risk strategy and levels of acceptable risk enables more cost effective management of cyber risks that is aligned with the business needs of the organization. Regular communication between the CEO and those held accountable for managing cyber risks provides awareness of current risks affecting their organization and associated business impact.

Implement industry standards and best

practices, dont rely on compliance.

A comprehensive cybersecurity program leverages industry standards and best practices to protect systems and detect potential problems, along with processes to be informed of current threats and enable timely response and recovery. Compliance requirements help to establish a good cybersecurity baseline to address known vulnerabilities, but do not adequately address new and dynamic threats, or counter sophisticated adversaries. Using a risk based approach to apply cybersecurity standards and practices allows for more comprehensive and cost effective management of cyber risks than compliance activities alone.

Evaluate and manage your organizations

specific cyber risks.

Identifying critical assets and associated impacts from cyber threats are critical to understanding a companys specific risk exposure whether financial, competitive, reputational, or regulatory. Risk assessment results are a key input to identify and prioritize specific protective measures, allocate resources, inform long-term investments, and develop policies and strategies to manage cyber risks to an acceptable level.

Provide oversight and review.

Executives are responsible to manage and oversee enterprise risk management. Cyber oversight activities include the regular evaluation of cybersecurity budgets, IT acquisition plans, IT outsourcing, cloud services, incident reports, risk assessment results, and top-level policies.