Official Review: CISO Defenders of the Cyber Realm

[Cecilia_L]

[Following is an official OnlineBookClub.org review of "CISO Defenders of the Cyber Realm" by Mike Loginov.]

---

4 out of 4 stars

---

Share This Review

---

"...we are now so dependent on the Internet, we have passed the tipping point where life would simply not be the same without it.” Mike Loginov

Headlines are filled with breaches by hackers who are intent on gaining unauthorized access to data and compromising cybersecurity. CISO Defenders of the Cyber Realm: Dirty Deeds, Hackers & Heroes by Mike Loginov takes a hard look at the importance of protecting privacy while identifying the ever-changing threat landscape. CISO (pronounced SeeSo) is the acronym for Chief Information Security Officer, one who establishes and maintains organizational programs and strategies ensuring information assets are protected. Written for executives and the general public, the book champions the importance of the CISO role. Technology is not the core of the book. Instead, insight is shared by both those who inflict harm as well as those who try to prevent it including interviews with a hacker, a victim of identity theft, and the first CISO. Additionally, chapters address future threats and debunk the "Why worry if I have nothing to hide?" argument. While the author stresses the need for thinking differently when it comes to taking action against risk, he also recognizes the improvements that are being made. Not intended to be a message of gloom and doom, the book provides small steps that can be used to achieve more security.

While most companies put little effort into security protection, according to the odds, it’s not a matter of if an organization will be breached but when. The author addresses the lack of clear division between personal and business breaches and the failure to take necessary precautions. Many small companies consider themselves less vulnerable to hackers. However, it’s actually more common for smaller companies to be hacked compared to larger ones. It’s also important to realize that a company can never be too big or powerful to be breached. For example, the UK Tesco Bank who owns a large global supermarket chain had their customer accounts directly hacked on a weekend in 2016. The author likens the CISO to the guard dog of the family. You may not want to pet it, but you recognize the vital function it performs in protecting business assets.

This well-written book provided a wealth of information regarding cybersecurity. Furthermore, it was organized, included chapter references, and a cybersecurity glossary. What I liked most about this tech-savvy book was the author's interview with Nikolay Danev, the CEO of a company that specializes in identifying and tracking data breaches. After years of researching the dark web, Danev concluded that those desiring access to compromised data can find it. While much of the information he shared was unsettling, the author identified him as one of the "good guys." I especially appreciated the practical tips he offered that don't require expert knowledge of cybersecurity. Regarding passwords, Danev Illustrated his point with the hypothetical "Password." Many users update with variations such as "Password1" and "Password2." Obviously, the hacker will progress to "Password3." While this may seem like a no-brainer, most people, including myself, have been guilty of this mistake at some point. This interview was included in the book's introduction. Since much of the information was new to me, I was happy to see the interview was followed by a list of key points.

On the other hand, I was disappointed when I realized the helpful key points notes were not included at the close of each chapter. Instead, the chapters concluded with the perspectives from different professionals working in the CISO industry which provided valuable insight. However, due to the volume of the chapters' highly specialized content, the addition of a key point summary comparable to the one in the introduction would have made the book more user-friendly. I selected the book because the synopsis described the content as written for the average layperson. While it is true that some of the content I've mentioned is instructive for the average reader, most of the content is specifically relevant for those who work in the CISO industry or want to hire a CISO professional.

While I don't consider myself a computer tech expert, I would say that I have more than a basic understanding when it comes to computer literacy. I'm a blogger who created my own web design, and I'm familiar with terms such as HTML, SEO, and GDPR. Not previously familiar with the acronym CISO, I viewed it as an opportunity to learn something new--which I did. However, considering that most readers may also not know the term, I would have liked to have seen it defined before page 25. Even so, the book's presentation was quite professional as I found no errors. It is worthy of a 4 out of 4 star rating. I recommend it as a helpful resource for readers who desire to learn more about CISO and hacker prevention. For basic and personal cybersecurity, you may prefer something less specialized and more user-friendly.

******
CISO Defenders of the Cyber Realm
View: on Bookshelves | on Amazon

Like Cecilia_L's review? Post a comment saying so!

[EvaDar]

I think I don't have quite your tech savvy, so this book might be over my head. I know I could learn a lot from this material, but It might just make me anxious to know how easy it is to hack us! I'm kind of lazy about passwords too, I think. Thanks for another great review.

[Cecilia_L]

I think I don't have quite your tech savvy, so this book might be over my head. I know I could learn a lot from this material, but It might just make me anxious to know how easy it is to hack us! I'm kind of lazy about passwords too, I think. Thanks for another great review.

Eva, thanks for your comment. I understand--it's hard not to get anxious when reading about cybersecurity. The book definitely prompted me to update my passwords!

[Debjani Ghosh]

Being a computer science student myself, I would like to have a look at this well-organised resourceful book. Thanks for the review!

[kandscreeley]

I've heard of a Chief Information Security Officer, but I have never seen it abbreviated. It sounds very informative. I agree that it isn't really a matter of if companies will be breached but when. Thanks for the review.

[Cecilia_L]

Being a computer science student myself, I would like to have a look at this well-organised resourceful book. Thanks for the review!

Thanks for your comment. It sounds like just the book for you.

[Cecilia_L]

I've heard of a Chief Information Security Officer, but I have never seen it abbreviated. It sounds very informative. I agree that it isn't really a matter of if companies will be breached but when. Thanks for the review.

Thank you for stopping by and for your comment.

[T_stone]

This book sounds very informative and security awareness to companies and individuals. I really like tech pertaining topics. Your reviews are always very extensive which give potential readers insights to what to expect from reading a particular book. Definitely adding this to my list.
A great book review

[Cecilia_L]

This book sounds very informative and security awareness to companies and individuals. I really like tech pertaining topics. Your reviews are always very extensive which give potential readers insights to what to expect from reading a particular book. Definitely adding this to my list.
A great book review

Thank you. I hope you enjoy the book.