ABSTRACT
As illustrated in Figure 19.1, one philosophy security professionals can adopt is to consider security controls in three fundamental areas when designing an information security strategy: attack resiliency, incident readiness, and security maturity.
