The Cybersecurity Canon

Interesting website: The Cybersecurity Canon - books every cybersecurity professional should read. The goal of the site is To identify a list of must-read books for all cybersecurity practitioners – be they from industry, government or academia -- where the content is timeless, genuinely represents an aspect of the community that is true and precise, reflects the highest quality and, if not read, will leave a hole in the cybersecurity professional’s education that will make the practitioner incomplete.

The complete list has been organized as a List on LibraryThing:

The awards started in 2014 with one book:

  • We Are Anonymous: Inside the Hacker World of LulzSec, Anonymous and the Global Cyber Insurgency (2012) by Parmy Olson.

Award winners expanded to 4 in 2015:

  • Spam Nation
  • The Cuckoo’s Egg
  • Winning as a CISO
  • Countdown to Zero Day

The canon expanded again in 2016, to 8 award winners:

  • The CERT Guide to Insider Threats
  • Cyber War: The Next Threat to National Security and What to Do About It
  • Future Crimes: Everything Is Connected, Everyone Is Vulnerable and What We Can Do About It
  • @War: The Rise of the Military-Internet Complex
  • Measuring and Managing Information Risk: A FAIR Approach
  • Kingpin: How a Hacker Took Over the Billion-Dollar Cybercrime Underground (2011) by Kevin Poulsen
  • Zero Day - Mark Russinovich
  • Tallinn Manual on the International Law Applied to Cyber Warfare


2/14/2018 Update - 2017 award winners:

  • How to Measure Anything in Cybersecurity Risk by Douglas W. Hubbard
  • The Practice of Network Security Monitoring: Understanding Incident Detection and Response by Richard Bejtlich
  • The Phoenix Project: A Novel about IT, DevOps, and Helping Your Business Win by Gene Kim
  • Hacking Exposed 7: Network Security Secrets & Solutions, Seventh Edition by Stuart McClure
  • Unmasking the Social Engineer: The Human Element of Security by Christopher Hadnagy
  • Secrets and lies : digital security in a networked world by Bruce Schneier

See the updated Cybersecurity Canon list on LibraryThing. At the end of 2017, the Cybersecurity Canon is made up of 19 award winners.

Links to the Paloalto Networks site: