With their rapidly changing architecture and API-driven automation, cloud platforms come with unique security challenges and opportunities. This hands-on book guides you through security best practices for multivendor cloud environments, whether your company plans to move legacy on-premises projects to the cloud or build a new infrastructure from the ground up. Developers, IT architects, and security professionals will learn cloud-specific techniques for securing popular cloud platforms such as Amazon Web Services, Microsoft Azure, and IBM Cloud. Chris Dotson—an IBM senior technical staff member—shows you how to establish data asset management, identity and access management, vulnerability management, network security, and incident response in your cloud environment.
Enhance and secure your datacenter with Microsoft Windows Server 2019 Key Features Updated with four new chapters on Active Directory, DNS and DHCP, group policy, and troubleshooting Design and implement Microsoft Server 2019 in an enterprise environment Learn how to use Windows Server to create secure and efficient networks Book Description Written by a nine-time Microsoft MVP award winner with over twenty years of experience working in IT, Mastering Windows Server 2019 is a hands-on guide for anyone looking to keep their skills up to date. This third edition comes with four new chapters to provide you with the in-depth knowledge needed to implement and use this operating system in any environment. Centralized management, monitoring, and configuration of servers are key to an efficient IT department. This book delves into multiple methods for quickly managing all your servers from a single pane of glass' — the ability to monitor different servers across a network using Server Manager, Windows PowerShell, and even Windows Admin Center — from anywhere. Despite the focus on Windows Server 2019 LTSC, you will still explore containers and Nano Server, which are more related to the SAC of server releases. This additional coverage will give you insights into all aspects of using Windows Server 2019 in your environment. This book covers a range of remote access technologies available in this operating system, teaches management of PKI and certificates, and empowers you to virtualize your datacenter with Hyper-V. You will also discover the tools and software included with Windows Server 2019 that assist in the inevitable troubleshooting of problems that crop up. What you will learn Work with Server Core and Windows Admin Center Secure your network and data with modern technologies in Windows Server 2019 Understand containers and understand when to use Nano Server Discover new ways to integrate your datacenter with Microsoft Azure Reinforce and secure your Windows Server Virtualize your datacenter with Hyper-V Explore Server Manager, PowerShell, and Windows Admin Center Centralize your information and services using Active Directory and Group Policy Who this book is for If you are a system administrator or an IT professional designing and deploying Windows Server 2019, this book is for you. It will be particularly useful for sysadmins who've worked with older versions of Microsoft Server or those who want to stay up to date with new developments. Prior experience with Windows Server operating systems and familiarity with networking concepts is a must.
Use Microsoft SQL Server 2019 to implement, administer, and secure a robust database solution that is disaster-proof and highly available Key FeaturesExplore new features of SQL Server 2019 to set up, administer, and maintain your database solution successfullyDevelop a dynamic SQL Server environment and streamline big data pipelinesDiscover best practices for fixing performance issues, database access management, replication, and securityBook Description SQL Server is one of the most popular relational database management systems developed by Microsoft. This second edition of the SQL Server Administrator's Guide will not only teach you how to administer an enterprise database, but also help you become proficient at managing and keeping the database available, secure, and stable. You’ll start by learning how to set up your SQL Server and configure new and existing environments for optimal use. The book then takes you through designing aspects and delves into performance tuning by showing you how to use indexes effectively. You’ll understand certain choices that need to be made about backups, implement security policy, and discover how to keep your environment healthy. Tools available for monitoring and managing a SQL Server database, including automating health reviews, performance checks, and much more, will also be discussed in detail. As you advance, the book covers essential topics such as migration, upgrading, and consolidation, along with the techniques that will help you when things go wrong. Once you’ve got to grips with integration with Azure and streamlining big data pipelines, you’ll learn best practices from industry experts for maintaining a highly reliable database solution. Whether you are an administrator or are looking to get started with database administration, this SQL Server book will help you develop the skills you need to successfully create, design, and deploy database solutions. What you will learnDiscover SQL Server 2019’s new features and how to implement themFix performance issues by optimizing queries and making use of indexesDesign and use an optimal database management strategyCombine SQL Server 2019 with Azure and manage your solution using various automation techniquesImplement efficient backup and recovery techniques in line with security policiesGet to grips with migrating, upgrading, and consolidating with SQL ServerSet up an AlwaysOn-enabled stable and fast SQL Server 2019 environmentUnderstand how to work with Big Data on SQL Server environmentsWho this book is for This book is for database administrators, database developers, and anyone who wants to administer large and multiple databases single-handedly using Microsoft's SQL Server 2019. Basic awareness of database concepts and experience with previous SQL Server versions is required.
The Windows Server 2019 operating system is an improvement from its predecessor, Windows Server 2016. It offers various features that cater to the modern needs of businesses. One of the most significant changes in the server interface is its traditional Windows desktop that has been replaced with the Windows Admin Center. This change makes it more organized and faster to access critical features. Windows Server 2019 also features a new Storage Migration Service, which enables smooth transfers of data from previous Windows Server versions to the latest releases. The new server operating system offers a range of enhancements for security purposes, such as the Shielded Virtual Machines, powered by virtual TPMs and Advanced Threat Protection. Such features make it increasingly challenging for hackers to penetrate the system. Other critical enhancements include network performance improvements, PowerShell features, and Quick Create options. Overall, Windows Server 2019 provides businesses with various tools to meet the evolving needs for seamless integration, security, performance enhancements, flexibility, and accessibility. In conclusion, Windows Server 2019 is a robust and scalable operating system designed to cater to the needs of the current business landscape. From the insights in this introduction, it is evident that the enhanced features provided by Windows Server 2019 can improve the management and deployment of critical applications. It is an ideal upgrade for businesses looking to modernize their IT infrastructure and maintain a secure, productive, and efficient work environment.
Deploy, set up, and deliver network services with Windows Server 2019, and prepare for the MTA 98-365 exam Key FeaturesGet started with server installation, performance monitoring, and server maintenanceDevelop the skills necessary to manage an enterprise environmentImplement networking and security best practices in your Windows Server environmentBook Description Windows Server 2019 is the server operating system introduced by Microsoft as part of the Windows NT family of operating systems, developed concurrently with Windows 10. This book will not only get you started with Windows Server 2019, but will also help you prepare for the MTA 98-365 exam. With step-by-step instructions and easy-to-understand graphics, you will become well-versed with the roles, features, and functions of Windows Server 2019. Starting with the installation process, upgrades, and basic configuration, you will move on to explore roles and features such as Active Directory, Hyper-V, remote access, storage, and printers. The book then takes you through maintenance and troubleshooting tasks to guide you in efficiently managing Windows Server 2019. In addition, it covers Windows Server 2019 best practices using real-world examples. Complete with questionnaires, and detailed answers at the end of the book, you can test your understanding of the concepts covered in each chapter. By the end of this book, you will be equipped with the knowledge you need to troubleshoot, update, and maintain servers so as to ensure business continuity. What you will learnGrasp the fundamentals of Windows Server 2019Understand how to deploy Windows Server 2019Discover Windows Server post-installation tasksAdd roles to your Windows Server environmentApply Windows Server 2019 GPOs to your networkDelve into virtualization and Hyper-V conceptsExplore ways to tune, maintain, update, and troubleshoot Windows Server 2019Study relevant concepts in preparation for the MTA 98-365 examWho this book is for If you are a system administrator or an IT professional who wants to deploy and configure Windows Server 2019, this book is for you. You can also use this as a reference guide for the MTA: Windows Server Administration Fundamentals: 98-365 exam.
Discover high-value Azure security insights, tips, and operational optimizations This book presents comprehensive Azure Security Center techniques for safeguarding cloud and hybrid environments. Leading Microsoft security and cloud experts Yuri Diogenes and Dr. Thomas Shinder show how to apply Azure Security Center’s full spectrum of features and capabilities to address protection, detection, and response in key operational scenarios. You’ll learn how to secure any Azure workload, and optimize virtually all facets of modern security, from policies and identity to incident response and risk management. Whatever your role in Azure security, you’ll learn how to save hours, days, or even weeks by solving problems in most efficient, reliable ways possible. Two of Microsoft’s leading cloud security experts show how to: • Assess the impact of cloud and hybrid environments on security, compliance, operations, data protection, and risk management • Master a new security paradigm for a world without traditional perimeters • Gain visibility and control to secure compute, network, storage, and application workloads • Incorporate Azure Security Center into your security operations center • Integrate Azure Security Center with Azure AD Identity Protection Center and third-party solutions • Adapt Azure Security Center’s built-in policies and definitions for your organization • Perform security assessments and implement Azure Security Center recommendations • Use incident response features to detect, investigate, and address threats • Create high-fidelity fusion alerts to focus attention on your most urgent security issues • Implement application whitelisting and just-in-time VM access • Monitor user behavior and access, and investigate compromised or misused credentials • Customize and perform operating system security baseline assessments • Leverage integrated threat intelligence to identify known bad actors
High-level overview of the information security field. Covers key concepts like confidentiality, integrity, and availability, then dives into practical applications of these ideas in the areas of operational, physical, network, application, and operating system security. In this high-level survey of the information security field, best-selling author Jason Andress covers the basics of a wide variety of topics, from authentication and authorization to maintaining confidentiality and performing penetration testing. Using real-world security breaches as examples, Foundations of Information Security explores common applications of these concepts, such as operations security, network design, hardening and patching operating systems, securing mobile devices, as well as tools for assessing the security of hosts and applications. You'll also learn the basics of topics like: Multifactor authentication and how biometrics and hardware tokens can be used to harden the authentication process The principles behind modern cryptography, including symmetric and asymmetric algorithms, hashes, and certificates The laws and regulations that protect systems and data Anti-malware tools, firewalls, and intrusion detection systems Vulnerabilities such as buffer overflows and race conditions A valuable resource for beginning security professionals, network systems administrators, or anyone new to the field, Foundations of Information Security is a great place to start your journey into the dynamic and rewarding field of information security.
Website security made easy. This book covers the most common ways websites get hacked and how web developers can defend themselves. The world has changed. Today, every time you make a site live, you're opening it up to attack. A first-time developer can easily be discouraged by the difficulties involved with properly securing a website. But have hope: an army of security researchers is out there discovering, documenting, and fixing security flaws. Thankfully, the tools you'll need to secure your site are freely available and generally easy to use. Web Security for Developers will teach you how your websites are vulnerable to attack and how to protect them. Each chapter breaks down a major security vulnerability and explores a real-world attack, coupled with plenty of code to show you both the vulnerability and the fix. You'll learn how to: Protect against SQL injection attacks, malicious JavaScript, and cross-site request forgery Add authentication and shape access control to protect accounts Lock down user accounts to prevent attacks that rely on guessing passwords, stealing sessions, or escalating privileges Implement encryption Manage vulnerabilities in legacy code Prevent information leaks that disclose vulnerabilities Mitigate advanced attacks like malvertising and denial-of-service As you get stronger at identifying and fixing vulnerabilities, you'll learn to deploy disciplined, secure code and become a better programmer along the way.
This book constitutes the refereed proceedings of the 15th International Conference on Information Security Practice and Experience, ISPEC 2019, held in Kuala Lumpur, Malaysia, in November 2019. The 21 full and 7 short papers presented in this volume were carefully reviewed and selected from 68 submissions. They were organized into the following topical sections: Cryptography I, System and Network Security, Security Protocol and Tool, Access Control and Authentication, Cryptography II, Data and User Privacy, Short Paper I, and Short Paper II.
Any IT professional can tell you that managing security is a top priority and even more so when working in the cloud. Access to accurate and timely security information is critical, but governance and control must first be enabled. This guide shows you how to take advantage of Azure's vast and powerful built-in security tools and capabilities for your application workloads. Pro Azure Governance and Security offers a comprehensive look at the governance features available with Microsoft Azure and demonstrates how to integrate them with your hybrid and Azure environments, drawing on the author's experiences from years in the field. Learn about the array of controls implemented within Microsoft Azure from two valuable perspectives: the customer and Microsoft operations. Beginning with the top-level subscription hierarchy, learn about the most important built-in Azure security services and features, as well as how to use Azure Policies and Blueprints as a means for security and governance. A series of hands-on exercises teaches you the concepts of Azure Governance: how to enable and deploy Azure Security Center, integrate RBAC (role-based access control), and set up Azure Operations and Monitoring. Get introduced to the new Azure Sentinel solution that offers SIEM as a service for security incident management and proactive hunting. What You'll Learn Understand different architectural designs for implementing Azure Security Operate and monitor an Azure environmentDeploy Azure Governance, Policies, and BlueprintsDiscover key Azure features that enhance securityImplement and confidently access Azure Security CenterGet to know Azure Sentinel Who This Book Is For Technical engineers, consultants, solution and cloud architects, IT managers, and SecOps teams who need to understand how to integrate governance, security, and compliance in hybrid and Azure environments. A basic understanding of Azure or other public cloud platforms is beneficial, but not required.
