The definitive guide to information security automation technologies
Security Automation Essentials: Streamlined Enterprise Security Management & Monitoring with SCAP provides IT security managers in both government agencies and private organizations with full details on the capabilities of SCAP (Security Content Automation Protocol) technologies. SCAP reduces dozens of individual security-related tasks (checking that patches are up to date) to simple, streamlined, and automated tasks that produce standardized results. It aids in the integration and ease of use of multiple, non-interoperable products and platforms.
This book is written by a team of subject matter experts from G2, a leading computer security company working closely with the SCAP standards agency (NIST), government clients, including the Department of Defense, NSA, Drug Enforcement Administration, and FDA, and private clients such as American Express, Monster.com, and Black & Decker. The book delivers a complete and accessible overview of SCAP, including enumerations of common platforms, vulnerabilities, and configurations. SCAP's open-standard, SML-based language is discussed, along with the Open Vulnerability and Assessment Language (OVAL), and how it communicates.
Security Automation Essentials: Streamlined Enterprise Security Management & Monitoring with SCAP
• Features thorough, accessible explanations for security professionals of all levels about what SCAP is and what it can do to automate and streamline network security practices
• Helps you immediately take advantage of SCAP support in existing products, and includes tips for purchasing new security products and services that can interoperate with existing enterprise systems
• Includes case studies of SCAP streamlining in practice
• Supplemented by an author website with up-to-date resources and announcements on the latest developments in the field
• Provides a solid foundation for studying particular SCAP components in more detail and customizing/programming SCAP content and tools
What Is SCAP; SCAP Languages; SCAP Enumerations; SCAP Vulnerability Measurement; Putting the Pieces Together; Using SCAP In Your Enterprise; Emerging SCAP Technologies