Cybersecurity: Defending the Digital World
Defending the Digital World
Start Reading →
40 chapters
~84 hours total
308 sections
1
Front Matter
5 chapters2
Part I: Security Foundations
6 chapters- Part I: Security Foundations
- Chapter 1: What Is Cybersecurity? Threats, Vulnerabilities, Risk, and Why Everything Is Under Attack
- Chapter 2: The Threat Landscape: Who Attacks, Why They Attack, and How Attacks Actually Work
- Chapter 3: Security Principles: CIA Triad, Defense in Depth, Least Privilege, and Zero Trust
- Chapter 4: Cryptography Fundamentals: Encryption, Hashing, Digital Signatures, and PKI
- Chapter 5: Applied Cryptography: TLS, VPNs, Disk Encryption, and Securing Data in Transit and at Rest
3
Part II: Network Security
6 chapters- Part II: Network Security
- Chapter 6: Network Security Fundamentals: TCP/IP, Ports, Protocols, and Where Attacks Live
- Chapter 7: Firewalls, IDS/IPS, and Network Access Control: The Perimeter That Doesn't Exist Anymore
- Chapter 8: Wireless Security: WiFi, Bluetooth, and the Invisible Attack Surface
- Chapter 9: DNS, Email, and Web Security: Securing the Protocols Everyone Uses Every Day
- Chapter 10: Network Monitoring and Traffic Analysis: Seeing the Invisible with Wireshark, Zeek, and Flow Data
4
Part III: System and Application Security
6 chapters- Part III: System and Application Security
- Chapter 11: Operating System Security: Hardening Windows, Linux, and macOS
- Chapter 12: Application Security: OWASP Top 10, Secure Coding, and Why Developers Are the First Line of Defense
- Chapter 13: Web Application Security: SQL Injection, XSS, CSRF, and the Attacks That Never Get Old
- Chapter 14: Mobile and IoT Security: Securing the Devices That Outnumber Humans
- Chapter 15: Cloud Security: AWS, Azure, GCP — Shared Responsibility and the New Attack Surface
5
Part IV: Identity and Access Management
6 chapters- Part IV: Identity and Access Management
- Chapter 16: Authentication: Passwords, MFA, Biometrics, Passkeys, and Why Passwords Won't Die
- Chapter 17: Authorization and Access Control: RBAC, ABAC, and Who Gets Access to What
- Chapter 18: Identity Governance: SSO, Federation, Directory Services, and Managing a Million Accounts
- Chapter 19: Privileged Access Management: Protecting the Keys to the Kingdom
- Chapter 20: Secrets and Machine Identity: Service Accounts, API Keys, Certificates, and Securing Non-Human Access
6
Part V: Security Operations
6 chapters- Part V: Security Operations
- Chapter 21: Security Information and Event Management (SIEM): Centralized Logging and Correlation
- Chapter 22: Threat Detection and Hunting: Indicators of Compromise, Threat Intelligence, and Hunting for Adversaries
- Chapter 23: Vulnerability Management: Scanning, Prioritizing, Patching, and the Vulnerability That Never Gets Fixed
- Chapter 24: Incident Response: Preparation, Detection, Containment, Eradication, Recovery, and Lessons Learned
- Chapter 25: Digital Forensics for Defenders: Preserving Evidence, Timeline Analysis, and Post-Breach Investigation
7
Part VI: Governance, Risk, and Compliance
6 chapters- Part VI: Governance, Risk, and Compliance
- Chapter 26: Security Governance: Policies, Standards, Procedures, and Building a Security Program
- Chapter 27: Risk Management: Identifying, Assessing, Mitigating, and Accepting Risk
- Chapter 28: Compliance Frameworks: NIST CSF, ISO 27001, SOC 2, PCI-DSS, HIPAA, and GDPR
- Chapter 29: Third-Party and Supply Chain Risk Management: Vendor Risk, SBOMs, and Trusting What You Didn't Build
- Chapter 30: Security Awareness Training: The Human Firewall (and Why Phishing Still Works)
8
Part VII: Advanced and Emerging Topics
6 chapters- Part VII: Advanced and Emerging Topics
- Chapter 31: DevSecOps: Integrating Security into CI/CD Pipelines and the Software Development Lifecycle
- Chapter 32: Zero Trust Architecture: Never Trust, Always Verify — Designing for the Post-Perimeter World
- Chapter 33: Securing Operational Technology: ICS, SCADA, and Critical Infrastructure Defense
- Chapter 34: AI and Machine Learning in Security: Anomaly Detection, Threat Prediction, and Adversarial AI
- Chapter 35: Emerging Threats: Supply Chain Attacks, Ransomware Evolution, Deepfakes, and Post-Quantum Cryptography
9
Part VIII: Synthesis
6 chapters- Part VIII: Synthesis
- Chapter 36: Security Metrics, Measurement, and Reporting to the Board
- Chapter 37: Building and Leading the Security Function: Teams, Culture, and the Modern SOC
- Chapter 38: Capstone: Building a Complete Security Program from Risk Assessment to Board Presentation
- Chapter 39: The Cybersecurity Career: Certifications, Specializations, and the Path from Analyst to CISO
- Chapter 40: Case Studies: SolarWinds, Colonial Pipeline, Log4Shell, and the Breaches That Changed the Industry
10
Appendices
14 chapters- Appendix A: Security Frameworks and Controls Reference
- Appendix B: The `bluekit` Defender's Toolkit
- Appendix C: Defensive Tool Reference
- Appendix D: Incident-Response Playbooks
- Appendix E: Compliance Crosswalk
- Appendix F: Hardening Checklists
- Appendix G: Cryptography Reference
- Appendix H: Certification Roadmap
- Appendix I: Security Policy Templates
- Appendix J: Resources and Communities
- Glossary
- Answers to Selected Exercises
- Index
- Bibliography
Explore Related Books
More open-access textbooks from our library
Advanced COBOL 40 chapters · ~67h Advanced Data Science 39 chapters · ~57h AI Ethics 39 chapters · ~82h AI Literacy 21 chapters · ~13h AI & ML for Business 40 chapters · ~80h AI Engineering 40 chapters · ~53h Algorithmic Addiction 40 chapters · ~71h American Government 40 chapters · ~77h Applied Psychology 40 chapters · ~52h Assembly Language 40 chapters · ~27h Blockchain & Crypto 40 chapters · ~68h Calculus 40 chapters · ~51h College Football Analytics 28 chapters · ~18h Creator Economy 41 chapters · ~57h Pattern Recognition 43 chapters · ~92h Data & Society 40 chapters · ~71h Data Viz with Python 35 chapters · ~53h Discrete Mathematics for Computer Science 40 chapters · ~75h Ethical Hacking 41 chapters · ~58h Fandom 44 chapters · ~71h History of Appalachia 42 chapters · ~69h How Humans Get Stuck 40 chapters · ~36h Handling Confrontation 40 chapters · ~80h How to Learn Anything 38 chapters · ~54h How Your House Works 40 chapters · ~66h IBM DB2 37 chapters · ~53h Intermediate COBOL 54 chapters · ~44h Intermediate Data Science 36 chapters · ~39h Intro CS Python 27 chapters · ~13h Intro to Data Science 36 chapters · ~54h Introductory Economics 40 chapters · ~12h Introductory Statistics 28 chapters · ~47h Learning COBOL 42 chapters · ~64h Prediction Markets 42 chapters · ~60h Linear Algebra 40 chapters · ~60h Metacognition 28 chapters · ~52h Media Literacy 41 chapters · ~81h Music Production 40 chapters · ~84h NFL Analytics 28 chapters · ~16h Nuclear Physics 35 chapters · ~28h Organic Chemistry 40 chapters · ~21h Pascal Programming 40 chapters · ~43h Physics of Music 48 chapters · ~75h Political Analytics 41 chapters · ~67h Popular Psychology 40 chapters · ~21h Practical Philosophy 38 chapters · ~63h Basketball Analytics 31 chapters · ~30h Soccer Analytics 30 chapters · ~43h Propaganda 40 chapters · ~80h Python for Business 40 chapters · ~40h Quantum Mechanics 40 chapters · ~66h RegTech 40 chapters · ~59h The Science of Cooking 40 chapters · ~70h Science of Seduction 45 chapters · ~60h Sports Betting 42 chapters · ~63h Technical Writing 40 chapters · ~70h Architecture of Surveillance 40 chapters · ~54h Science of Luck 40 chapters · ~72h Eastern Cultures 40 chapters · ~47h Western Culture 40 chapters · ~30h Vibe Coding 42 chapters · ~58h Video Game Design 40 chapters · ~36h Why They Watch 40 chapters · ~48h Working with AI 42 chapters · ~58h