O'Reilly logo

CISSP: Certified Information Systems Security Professional Study Guide, 6th Edition by Darril Gibson, Mike Chapple, James M. Stewart

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 6

Risk and Personnel Management

THE CISSP EXAM TOPICS COVERED IN THIS CHAPTER INCLUDE:

3. Information Security Governance and Risk Management
F. Manage third-party governance (e.g., on-site assessment, document exchange and review, process/policy review)
G. Understand and apply risk management concepts
G.1 Identify threats and vulnerabilities
G.2 Risk assessment/analysis (qualitative, quantitative, hybrid)
G.3 Risk assignment/acceptance
G.4 Countermeasure selection
G.5 Tangible and intangible asset valuation
H. Manage personnel security
H.1 Employment candidate screening (e.g., reference checks, education verification)
H.2 Employment agreements and policies
H.3 Employee termination processes
H.4 Vendor, consultant, and contractor controls ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required