Chapter 18

Incidents and Ethics

THE CISSP EXAM TOPICS COVERED IN THIS CHAPTER INCLUDE:

9. Legal, Regulations, Investigations, and Compliance
A. Understand legal issues that pertain to information security internationally
B. Understand professional ethics
B.1 (ISC)2 code of professional ethics
B.2 Support organization’s code of ethics
C. Understand and support investigations
C.1 Policies, roles and responsibilities (e.g. rules of engagement, authorization, scope)
C.2 Incident handling and response
C.3 Evidence collection and handling (e.g., chain of custody, interviewing)
C.4 Reporting and documenting
D. Understand forensic procedures
D.1 Media analysis
D.2 Network analysis
D.3 Software analysis
D.4 Hardware/embedded device analysis

In this ...

Get CISSP: Certified Information Systems Security Professional Study Guide, 6th Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.