The Cybersecurity Canon

Interesting website: The Cybersecurity Canon - books every cybersecurity professional should read. The goal of the site is To identify a list of must-read books for all cybersecurity practitioners – be they from industry, government or academia -- where the content is timeless, genuinely represents an aspect of the community that is true and precise, reflects the highest quality and, if not read, will leave a hole in the cybersecurity professional’s education that will make the practitioner incomplete.

The complete list has been organized as a List on LibraryThing:

The awards started in 2014 with one book:

  • We Are Anonymous: Inside the Hacker World of LulzSec, Anonymous and the Global Cyber Insurgency (2012) by Parmy Olson.

Award winners expanded to 4 in 2015:

  • Spam Nation
  • The Cuckoo’s Egg
  • Winning as a CISO
  • Countdown to Zero Day

The canon expanded again in 2016, to 8 award winners:

  • The CERT Guide to Insider Threats
  • Cyber War: The Next Threat to National Security and What to Do About It
  • Future Crimes: Everything Is Connected, Everyone Is Vulnerable and What We Can Do About It
  • @War: The Rise of the Military-Internet Complex
  • Measuring and Managing Information Risk: A FAIR Approach
  • Kingpin: How a Hacker Took Over the Billion-Dollar Cybercrime Underground (2011) by Kevin Poulsen
  • Zero Day - Mark Russinovich
  • Tallinn Manual on the International Law Applied to Cyber Warfare