Chapter 4Domain 4: Cloud Application Security

images The fourth domain of the CCSP CBK covers applications in the cloud, from software development to challenges involved in migrating legacy apps. It also addresses software security and performance testing methods as well as proper identity and access management (IAM) principles. Because it is weighted less than the previous domains (according to this table published by (ISC)2,, there are considerably fewer questions in this chapter.

  1. ISO 27034 mandates a framework for application security within an organization. ...

Get CCSP Official (ISC)2 Practice Tests now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.