Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Mastering Windows Security and Hardening
  • Table Of Contents Toc
  • Feedback & Rating feedback
Mastering Windows Security and Hardening

Mastering Windows Security and Hardening

By : Mark Dunkerley, Matt Tumbarello
4.8 (20)
Buy this Book
close
close
Mastering Windows Security and Hardening

Mastering Windows Security and Hardening

4.8 (20)
By: Mark Dunkerley, Matt Tumbarello
Buy this Book

Overview of this book

Are you looking for the most current and effective ways to protect Windows-based systems from being compromised by intruders? This updated second edition is a detailed guide that helps you gain the expertise to implement efficient security measures and create robust defense solutions using modern technologies. The first part of the book covers security fundamentals with details around building and implementing baseline controls. As you advance, you’ll learn how to effectively secure and harden your Windows-based systems through hardware, virtualization, networking, and identity and access management (IAM). The second section will cover administering security controls for Windows clients and servers with remote policy management using Intune, Configuration Manager, Group Policy, Defender for Endpoint, and other Microsoft 365 and Azure cloud security technologies. In the last section, you’ll discover how to protect, detect, and respond with security monitoring, reporting, operations, testing, and auditing. By the end of this book, you’ll have developed an understanding of the processes and tools involved in enforcing security controls and implementing zero-trust security principles to protect Windows systems.
Table of Contents (21 chapters)
close
close
close
Preface
chevron up
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Download the color images
Icon
Conventions used
Icon
Get in touch
Icon
Share Your Thoughts
1
Part 1: Getting Started and Fundamentals
Icon
Part 1: Getting Started and Fundamentals
Free Chapter
2
Chapter 1: Fundamentals of Windows Security
Icon
Chapter 1: Fundamentals of Windows Security
Icon
Understanding the security transformation
Icon
Living in today’s digital world
Icon
Today’s threats
Icon
Ransomware preparedness
Icon
Identifying vulnerabilities
Icon
Recognizing breaches
Icon
Current security challenges
Icon
Focusing on zero trust
Icon
Summary
3
Chapter 2: Building a Baseline
Icon
Chapter 2: Building a Baseline
Icon
Overview of baselining
Icon
Introduction to policies, standards, procedures, and guidelines
Icon
Incorporating change management
Icon
Implementing a security framework
Icon
Building baseline controls
Icon
Incorporating best practices
Icon
Summary
4
Chapter 3: Hardware and Virtualization
Icon
Chapter 3: Hardware and Virtualization
Icon
Technical requirements
Icon
Physical servers and virtualization
Icon
Introduction to hardware certification
Icon
The firmware interface, TPM, and Secure Boot
Icon
Isolated protection with VBS
Icon
Protecting data from lost or stolen devices
Icon
Hardware security recommendations and best practices
Icon
Summary
5
Chapter 4: Networking Fundamentals for Hardening Windows
Icon
Chapter 4: Networking Fundamentals for Hardening Windows
Icon
Technical requirements
Icon
Network security fundamentals
Icon
Understanding Windows network security
Icon
Windows Defender Firewall and Advanced Security
Icon
Web protection features in Microsoft Defender for Endpoint
Icon
Introducing Azure network security
Icon
Summary
6
Chapter 5: Identity and Access Management
Icon
Chapter 5: Identity and Access Management
Icon
Technical requirements
Icon
Identity and access management overview
Icon
Implementing account and access management
Icon
Understanding authentication, MFA, and going passwordless
Icon
Using Conditional Access and Identity Protection
Icon
Summary
7
Part 2: Applying Security and Hardening
Icon
Part 2: Applying Security and Hardening
8
Chapter 6: Administration and Policy Management
Icon
Chapter 6: Administration and Policy Management
Icon
Technical requirements
Icon
Understanding device administration
Icon
Managing devices with Configuration Manager
Icon
Managing devices with Intune
Icon
Administering a security baseline
Icon
Summary
9
Chapter 7: Deploying Windows Securely
Icon
Chapter 7: Deploying Windows Securely
Icon
Technical requirements
Icon
Device provisioning and upgrading Windows
Icon
Building hardened Windows images
Icon
Provisioning devices with Windows Autopilot
Icon
Deploying images to Azure Virtual Desktop
Icon
Deploying Windows 365 Cloud PC
Icon
Summary
10
Chapter 8: Keeping Your Windows Client Secure
Icon
Chapter 8: Keeping Your Windows Client Secure
Icon
Technical requirements
Icon
Securing your Windows clients
Icon
Staying updated with Windows Update for Business
Icon
Enforcing policies and configurations
Icon
Enabling BitLocker to prevent data theft
Icon
Going passwordless with Windows Hello for Business
Icon
Configuring a device compliance policy
Icon
Deploying Windows Security Baselines
Icon
Configuring Windows Security features
Icon
Summary
11
Chapter 9: Advanced Hardening for Windows Clients
Icon
Chapter 9: Advanced Hardening for Windows Clients
Icon
Technical requirements
Icon
Securing enterprise web browsers
Icon
Securing Microsoft 365 apps
Icon
Advanced protection features with Microsoft Defender
Icon
Summary
12
Chapter 10: Mitigating Common Attack Vectors
Icon
Chapter 10: Mitigating Common Attack Vectors
Icon
Technical requirements
Icon
Preventing an Adversary-in-the-Middle attack
Icon
Protecting against lateral movement and privilege escalation
Icon
Windows privacy settings
Icon
Summary
13
Chapter 11: Server Infrastructure Management
Icon
Chapter 11: Server Infrastructure Management
Icon
Technical requirements
Icon
Overview of the data center and the cloud (IaaS, PaaS, and SaaS)
Icon
Implementing access management in Windows servers
Icon
Understanding Windows Server management tools
Icon
Using Azure services to manage Windows servers
Icon
Connecting securely to Windows servers remotely
Icon
Summary
14
Chapter 12: Keeping Your Windows Server Secure
Icon
Chapter 12: Keeping Your Windows Server Secure
Icon
Technical requirements
Icon
Windows Server versions
Icon
Security roles in Windows Server
Icon
Configuring Windows updates
Icon
Configuring Windows Defender
Icon
Hardening Windows Server
Icon
Deploying application control policies using WDAC
Icon
Implementing PowerShell security
Icon
Summary
15
Part 3: Protecting, Detecting, and Responding for Windows Environments
Icon
Part 3: Protecting, Detecting, and Responding for Windows Environments
16
Chapter 13: Security Monitoring and Reporting
Icon
Chapter 13: Security Monitoring and Reporting
Icon
Technical requirements
Icon
MDE features
Icon
Onboarding Windows clients into MDE
Icon
Collecting telemetry with Azure Monitor Logs
Icon
Monitoring with Azure Monitor and activity logs
Icon
Overview of Microsoft Defender for Cloud
Icon
Reporting in MEM
Icon
Monitoring the health and update status of Office apps
Icon
Summary
17
Chapter 14: Security Operations
Icon
Chapter 14: Security Operations
Icon
Technical requirements
Icon
Introducing the SOC
Icon
Understanding XDR
Icon
Using the M365 Defender portal
Icon
Security operations with MDE
Icon
Investigating threats with Defender for Cloud
Icon
Enabling Azure-native SIEM with Microsoft Sentinel
Icon
Protecting apps with MDCA
Icon
Monitoring hybrid environments with MDI
Icon
Data protection with M365
Icon
Planning for business continuity
Icon
Summary
18
Chapter 15: Testing and Auditing
Icon
Chapter 15: Testing and Auditing
Icon
Technical requirements
Icon
Validating security controls
Icon
Vulnerability scanning overview
Icon
Planning for penetration testing
Icon
An insight into security awareness, training, and testing
Icon
Summary
19
Chapter 16: Top 10 Recommendations and the Future
Icon
Chapter 16: Top 10 Recommendations and the Future
Icon
The 10 most important to-do's
Icon
The future of device security and management
Icon
Security and the future
Icon
Summary
Icon
Why subscribe?
20
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Packt is searching for authors like you
Icon
Share Your Thoughts

Preface

Throughout this book, you will be provided with the knowledge needed to protect your Windows environment and the users that access it. The book will cover a variety of topics that go beyond the hardening of just the operating system to include the management of devices, baselining, hardware, virtualization, networking, identity management, security operations, monitoring, auditing, and testing. The goal is to ensure that you understand the foundation of, and multiple layers involved in, providing improved protection for your Windows systems.

Since this book focuses on security, it's important to understand the core principles that form an information security model. These principles are known as the CIA triad, which stands for confidentiality, integrity, and availability. If you have pursued a security certification, such as the CISSP or Security+ certifications, you will be very familiar with this model. If not, it is recommended that you familiarize yourself with them as a security professional. This book will not go into detail about the CIA triad, but the concepts provided in this book will support the foundation of ensuring the confidentiality, integrity, and availability of information on the Windows systems you manage. At a high level, CIA means the following:

  • Confidentiality involves ensuring that no one other than those who are authorized to can access information.
  • Integrity involves ensuring that the information being protected is original and has not been modified without the correct authorization.
  • Availability involves ensuring that information is always available when access is needed.

This book is split into three sections to help guide you and provide the understanding and knowledge that's needed to implement a solid Windows security foundation within your organization. The first section will cover getting started and foundations for Windows security. The second section will focus on applying security and hardening with the third section providing information to protect, detect, and respond for Windows environments.

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
Next Section

Create a Note

Modal Close icon
You need to login to use this feature.
notes
bookmark search playlist font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Delete Note

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Edit Note

Modal Close icon
Write a note (max 255 characters)
Cancel
Update Note

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY