
CyberCamp könyvajánló
Íme folyamatosan bővülő könyvajánlónk, aminek fő kurátora Imi.
"Mert talán még vannak, akik olvasnak könyveket..."

Karrier, menedzsment, személyes hatékonyság, informatika, kiberbiztonság, filozófia, tanácsadás/consulting, és egyéb témákban inspiráló, érdekes és hasznos olvasmányok.
Nem színes-szagos, de telis-teli olyan könyvekkel, amik nagyon fontos alapvetéseket tárgyalnak, saját személyes élménybeszámolóval. (Amazon affiliate linkekkel, így a kurátor kap egy kockacukrot ha meg is veszed)
De van egy jobb ötletünk! Ha érdekelne egy "könyvklub" tagság, amelyben ilyen és hasonló könyveket cserélhetnél hasonszőrű kollégákkal, írj nekünk, gyűjtjük az érdeklődőket, és ha elegen leszünk, beépítjük az előfizetésbe!
Mindezt angolul, mert hát nem árt azt is tudni - vagy dobd be a ChatGPT-be 😉
Information Security / Governance / Risk Management / Compliance
by Adam Shostack and Andrew Stewart | A truly inspirational book for me, wich was one of those works that opened my eyes to look for other perspectives than what is in front of my eyes. | |
by Andrew Jaquith | The greatest and funniest interpretation of security vendors' sales cycles is found in the book's intro: The Hamster wheel of pain. Look it up! All in all, this book made me realize, and provided me with the basic mindset, examples, and thinking about the backbone of a great information and cybersecurity framework (or 27001 ISMS even): key, business-relevant goals, and measuring them consistently. | |
by Todd Fitzgerald and Micki Krause | A great collection of essays, particularly useful for those who are new in the CISO or key security expert positions. Different viewpoints from different people, highlighting key topics which you need to pay attention to! | |
by Nassim Nicholas Taleb | Yes, the original works introducing the concept of the unthinkable event, that happens... Tough read to a non-native speaker, but if you enjoy reading, I do recommend going through it. A bit lengthy, but enjoyably written! Also, you never know, where you find an analogy or two, which resonates and stays with you. | |
| This was my first real introduction to cloud operational, technology and security concepts. A very readable learning resource, which is part of the free CCSK preparation kit, and is great if you have some background in information and cybersecurity or GRC as there are plenty of familiar topics which remain in focus in the cloud world; new models are pretty straightforward to tie in with an existing knowledge. The book is also great if you haven’t had too much in the way of security experience, but be warned: the book touches a broad array of controls without going deeper into explaining, so don’t be fooled to think all these topics can be really understood in depth just remaining on the level of the book. What I also recommend is following up with platform-specific materials, such as those published by major CSPs, keeping in mind the concepts from this book. You will also likely keep it for later reference. |
Management / Business / Professional skills / Psychology
by Simon Sinek | "People don't buy WHAT you do, they buy WHY you do it." Also, you get out of the bed for that rason, whatever it is. Do you know why? What gives you the juice to live a fulfilling professional and personal life? You can start to figure that out if you read this. Reading (and taking the time to think about it and understand the messages for myself) was a great, almost spiritual experience for me. Profound and transformative. | |
by Gary Chapman & Paul White | Being an introvert and a geek to a degree, interpersonal relations have been a myth for me. This book helped greatly in getting my head (and heart) around the issue and convey my appreciation for my co-workers on a regular basis. | |
by Marshall Goldsmith | Bought and read it when I took my first management position. I guess, you should read it before you actually get there. The book has helped me to see, with vivid examples, that my key skills, or what I thought were skills at the time, are not really assets anymore, if you move higher in position. Not all good experts are great managers or leaders -- at all! This book tells you why and how to change that! | |
by Atul Gawande | Oh, Yes! In simplicity lies power! And nothing more simple and powerul, than a "checklist". I can apply the lessons and examples in this book to information security process development, risk management, incident management -- and particularly my takeaway here is that EVERYTHING can be a checklist. You dont need to call it "BPR", or Management System, or any other fancy name! Just make some checklists, and you will be 2 levels higher in your Maturity scale, whatever your area is. The book contains such great stories and examples, particularly from medicide, I enjoyed reading it very much! | |
by Bill Gates | Written just before the turn of the millennium, in 1999, the lessons and ideas in this book are still very much valid today -- only our challenges don't revolve around adoption of EMAIL, but CLOUD. I loved reading all the stories about the internal challenges at Microsoft and how they got around siloed operations, internal politics and the like, that impede progress. | |
by Magnus Lindkvist | Entertaining and thought provoking, a few hours' read. You never know, what mundane daily routine activity or frustrating situations will bring you to a revelation or idea that becomes a great solution or business idea. In terms of security and risk process improvement, it reminded me of Kaizen, where as part of the continuous improvement, you rather change a number of small things to transform the big picture, rather than trying to boil the ocean at once. Any detail of a process improved, is a step forward -- no matter where the idea comes from! Also, I will re-read this small book form time to time, as it inspires me to not discard any idea, however insignificant it may appear in view of my other loftier aims. | |
Our Iceberg Is Melting |
| Coming up!! |