This book does not cover personal computer use or best practices. Instead it focuses on corporate cybersecurity — those protecting large companies and organizations from hacks and leaks. That focus means that much of the information included in this book is too advanced for a casual technology user. There is no glossary of terms, and, beyond a few sentences of explanation, some of the more complex cyber concepts do not get thoroughly introduced.
While this book may be too advanced for the average computer user, McCarty provides clear, actionable advice to cybersecurity professionals and IT departments, with each chapter suggesting “Recommended Security Controls and Mitigations” for each potential problem. He covers everything from more efficient network mapping to more robust recruitment for entry-level roles, but readers may also enjoy the book’s philosophical bent. McCarty includes a “Castle Theory Thought Exercise” at the end of each section, introducing a hypothetical threat scenario and challenging readers with open-ended questions about possible solutions. For those who already have a strong basis in cybersecurity, this book encourages critical thinking.
Takeaway: This advanced cybersecurity manual emphasizes intelligence, stealth, and critical thinking
Great for fans of: Matthew Hickey and Jennifer Arcuri’s Hands on Hacking, Joshua Picolet’s Operator Handbook, Chris Sanders’s Intrusion Detection Honeypots.
Design and typography: B+
Marketing copy: A