Member-only story
Introducing the Cybersecurity Canon
Reading about information security is fundamental
If knowledge is power, one of the more effective ways to get that power of knowledge is via reading books. When it comes to information security, one would have to spend many hours per day to keep up with the vast amount of written material that is constantly coming out. So what is a security professional to do?
A few years ago, David Bisson wrote a blog post, 10 Must-Read Books for Information Security Professionals, where he asked different information security professionals their must-read book. There are many books listed there that are definitely worth a read.
There’s the Cybersecurity Canon project for those who want more, of which I’m a member. The project was started in 2014 by Rick Howard, then CISO of Palo Alto Networks. The members of the Canon identify lists of must-read books for cybersecurity professionals or those looking to get a foothold into the security industry.
The list of books in the Canon and candidates for entry includes both non-fiction and (to my chagrin) fiction books. So what does it take for a book to make it into the Canon? First off, it should not necessarily be directly tied to a specific technology or product. While a book on Windows Server 2016 security or how to configure and use Wireshark…
