CISSP Study Guide
Paperback Engels 2023 9780443187346Samenvatting
CISSP (R) Study Guide, Fourth Edition provides the latest updates on CISSP (R) certification, the most prestigious, globally-recognized, vendor neutral exam for information security professionals. In this new edition, readers will learn about what's included in the newest version of the exam's Common Body of Knowledge. The eight domains are covered completely and as concisely as possible.
Each domain has its own chapter, including specially designed pedagogy to help readers pass the exam. Clearly stated exam objectives, unique terms/definitions, exam warnings, learning by example, hands-on exercises, and chapter ending questions help readers fully comprehend the material.
Specificaties
Lezersrecensies
Inhoudsopgave
Chapter 1: Introduction
Abstract
How to Prepare for the Exam
How to Take the Exam
Good Luck!
References
Chapter 2: Domain 1: Security and Risk Management
Abstract
Unique Terms and Definitions
Introduction
Cornerstone Information Security Concepts
Legal and Regulatory Issues
Ethics
Information Security Governance
Access Control Defensive Categories and Types
Risk Analysis
Security and Third Parties
Types of Attackers
Summary of Exam Objectives
Self-Test
Self-Test Quick Answer Key
References
Chapter 3: Domain 2: Asset Security
Abstract
Unique Terms and Definitions
Introduction
Classifying Data
Ownership and Inventory
Memory and Remanence
Data Destruction
Determining Data Security Controls
Summary of Exam Objectives
Self-Test
Self-Test Quick Answer Key
References
Chapter 4: Domain 3: Security Architecture and Engineering
Abstract
Unique Terms and Definitions
Introduction
Secure Design Principles
Security Models
Evaluation Methods, Certification, and Accreditation
Secure System Design Concepts
Secure Hardware Architecture
Secure Operating System and Software Architecture
Virtualization, Cloud, and Distributed Computing
System Vulnerabilities, Threats, and Countermeasures
Cornerstone Cryptographic Concepts
Types of Cryptography
Cryptographic Attacks
Implementing Cryptography
Perimeter Defenses
Site Selection, Design, and Configuration
System Defenses
Environmental Controls
Summary of Exam Objectives
Self-Test
Self-Test Quick Answer Key
References
Chapter 5: Domain 4: Communication and Network Security
Abstract
Unique Terms and Definitions
Introduction
Network Architecture and Design
Secure Network Devices and Protocols
Secure Communications
Summary of Exam Objectives
Self-Test
Self-Test Quick Answer Key
References
Chapter 6: Domain 5: Identity and Access Management (IAM)
Abstract
Unique Terms and Definitions
Introduction
Authentication Methods
Access Control Technologies
Access Control Models
Identity and Access Provisioning Lifecycle
Summary of Exam Objectives
Self-Test
Self-Test Quick Answer Key
References
Chapter 7: Domain 6: Security Assessment and Testing
Abstract
Unique Terms and Definitions
Introduction
Security Control Testing
Collecting Security Process Data
Summary of Exam Objectives
Self-Test
Self-Test Quick Answer Key
References
Chapter 8: Domain 7: Security Operations
Abstract
Unique Terms and Definitions
Introduction
Administrative Security
Forensics
Incident Management
Operational Preventive and Detective Controls
Asset Management
Continuity of Operations
BCP and DRP Overview and Process
Developing a BCP/DRP
Backups and Availability
DRP Testing, Training, and Awareness
Continued BCP/DRP Maintenance
Specific BCP/DRP Frameworks
Summary of Exam Objectives
Self-Test
Self-Test Quick Answer Key
References
Chapter 9: Domain 8: Software Development Security
Abstract
Unique Terms and Definitions
Introduction
Programming Concepts
Application Development Methods
Databases
Object-Oriented Design and Programming
Assessing the Effectiveness of Software Security
Artificial Intelligence
Summary of Exam Objectives
Self-Test
Self-Test Quick Answer Key
References
Appendix: Self-Test
Chapter 2: Domain 1: Security and Risk Management
Chapter 3: Domain 2: Asset Security
Chapter 4: Domain 3: Security Architecture and Engineering
Chapter 5: Domain 4: Communication and Network Security
Chapter 6: Domain 5: Identity and Access Management
Chapter 7: Domain 6: Security Assessment and Testing
Chapter 8: Domain 7: Security Operations
Chapter 9: Domain 8: Software Development Security
Glossary
Index
Rubrieken
- advisering
- algemeen management
- coaching en trainen
- communicatie en media
- economie
- financieel management
- inkoop en logistiek
- internet en social media
- it-management / ict
- juridisch
- leiderschap
- marketing
- mens en maatschappij
- non-profit
- ondernemen
- organisatiekunde
- personal finance
- personeelsmanagement
- persoonlijke effectiviteit
- projectmanagement
- psychologie
- reclame en verkoop
- strategisch management
- verandermanagement
- werk en loopbaan