As the new year starts, we shape our resolutions into reality. I’m sure many others will have joined me in adding a reading target to those resolutions. With that in mind, I would like to recommend these 5 books that have inspired and shaped some of my thinking regarding the unique challenges faced by our industry. I hope you see something among these cybersecurity books that will help you prepare for another eventful year in cybersecurity.
This book succinctly presents the core problem faced by cybersecurity practitioners. Budgets keep increasing, while breaches continue to proliferate. Be sure to give this a read for a fascinating dissection of the state of cybersecurity, and most importantly, how to strategically bring up cybersecurity challenges to a board for guidance and support.
Schneier always pens an enjoyable and authoritative read, as evidenced by the enduring popularity of his blog, Schneier on Security. Secrets and Lies dispels myths and lies bare fundamental truths about cybersecurity, making it an essential read for techies and business leaders alike. In particular, Schneier asserts that “often the patterns of communications are just as important as the content of the communication.” For example, the fact that someone phones a known adversary every week is more important than the details of their conversation. This is an interesting concept that we should try to operationalize in cybersecurity. If a machine is communicating with adversary infrastructure, we may not know the content of the communication. However, we know something significant: that communication should not be happening in the first place.
Written more than 15 years ago, The Singularity is Near remains as relevant today as ever. In it, Kurzweil explains how, while humans have a linear view of history, technology grows at an exponential rate. This simple mind-shift has vast implications. From the resources we’ll have available to us, to the challenges we’ll face, this book is required reading for anyone interested in what the future holds.
This book is a damning indictment of risk management practices in cybersecurity. Hubbard’s previous work, How to Measure Anything set out the need for better measurement in business. This time he goes further, shedding light on how some cybersecurity practices actually create more risk than they mitigate. This is an invaluable companion if you are planning on doing some soul-searching regarding your company’s cyber risk management practices.
This freely-available cybersecurity ebook represents a curated collection of all the research and whitepapers previously released by Lumu Technologies to date. Here you will learn how control systems alongside new technologies driven by network metadata can turn around the current underperforming state of cybersecurity. Many of the books featured in this list influenced and informed this, the foundational document that lays out the desperate need for Continuous Compromise Assessment.
Reading Time: 5 minsAdversaries are actively weaponizing the unpatched MiniPlasma zero-day to bypass traditional endpoint…
Reading Time: 5 minsCybercriminals are using AI today to accelerate attacks through deepfakes, smishing, exploit…
Reading Time: 4 minsThe ongoing Instructure data ransom attack gives adversaries access to sensitive K-12…
Reading Time: 6 minsEmpower your school's cyber stack by securing 1:1 Chromebooks. Learn how network…
Reading Time: 7 minsNetwork perimeters are no longer static. They grow and shift with third…
Reading Time: 7 minsHow does the 2026 Remcos RAT bypass your security to stream live…