O'Reilly logo

CISSP: Certified Information Systems Security Professional Study Guide, 6th Edition by Darril Gibson, Mike Chapple, James M. Stewart

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 13

Security Operations

THE CISSP EXAM TOPICS COVERED IN THIS CHAPTER INCLUDE:

7. Security Operations
A. Understand security operations concepts
A.1 Need-to-know/least privilege
A.2 Separation of duties and responsibilities
A.3 Monitor special privileges (e.g., operators, administrators)
A.4 Job rotation
A.5 Marking, handling, storing, and destroying of sensitive information
A.6 Record retention
B. Employ resource protection
B.1 Media management
B.2 Asset management (e.g., equipment life cycle, software licensing)
E. Implement and support patch and vulnerability management
F. Understand change and configuration management (e.g., versioning, baselining)

The Security Operations domain is focused on identifying and protecting critical ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required