Enterprise-Grade IT Security for Small and Medium Businesses: Building Security Systems, in Plain English

Book Description

Understand the IT security features that are needed to secure the IT infrastructure of a small to medium-size business. This book will give IT managers and executives a solid understanding of the different technology solutions that their business relies upon–or should be employing–in order to make reasoned decisions regarding the implementation of those features. Coverage includes multi-factor authentication, firewalls, zero-trust environments, network segmentation, remote access solutions, and the people aspects of security that are often overlooked and represent an organization’s biggest vulnerability.
Chapters on the various technologies such as multi-factor authentication and zero-trust environments explain in plain English the values and benefits that each technology provides. Clear technical explanations are accompanied by business case explanations that explain the “why” of each technology and when each technology should be implemented. You will come away equipped to have business-driven discussions with your IT staff that allow for a productive balancing of the need for security with the need to do business and drive profits.

You Will Learn

• The importance of multi-factor authentication
• The limits of what multi-factor authentication can protect
• How firewalls are used to protect your company from attackers
• What zero-trust environments are and what they mean
• Whether zero-trust networks are what is needed to secure your own environment
• The security benefits from implementing a network segmentation policy
• The best ways to access files and resources from remote locations outside the office

Who This Book Is For
Managers and executives at small to medium-size businesses who want to understand the core aspects of IT security on which their business relies, business leaders who want to be able to follow along with and engage in discussions with IT professionals about security features, and leaders who are tasked with making decisions on which IT security features to implement

中文：

书名：面向中小型企业的企业级IT安全：构建安全系统，通俗易懂

了解保护中小型企业IT基础设施所需的IT安全功能。这本书将使IT经理和管理人员对他们的业务依赖或应该采用的不同技术解决方案有一个扎实的了解，以便就这些功能的实施做出合理的决策。覆盖范围包括多因素身份验证、防火墙、零信任环境、网络分段、远程访问解决方案和人员安全方面，这些方面经常被忽视，并代表组织的最大漏洞。
关于多因素身份验证和零信任环境等各种技术的章节简单易懂地解释了每种技术提供的价值和好处。清晰的技术说明伴随着业务案例说明，这些说明解释了每项技术的“原因”以及每项技术应该在何时实现。您将准备好与您的IT员工进行以业务为导向的讨论，以便在安全需求与开展业务和推动利润的需求之间取得富有成效的平衡。

你会学到的

• 多因素身份验证的重要性
• 多因素身份验证可以保护的内容的限制
• 如何使用防火墙保护您的公司免受攻击者攻击
• 什么是零信任环境及其含义
• 零信任网络是否是保护您自己的环境所必需的
• 实施网络分段策略带来的安全优势
• 从办公室外的远程位置访问文件和资源的最佳方式

这本书是为谁写的
中小型企业的经理和高管，他们希望了解其业务所依赖的IT安全的核心方面；业务领导者，他们希望能够跟随IT专业人员并与他们讨论安全功能；以及负责决定实施哪些IT安全功能的领导者