Chapter 5

Security Architecture and Engineering


check Using secure design principles

check Understanding security models

check Choosing the right controls and countermeasures

check Recognizing security capabilities in information systems

check Assessing and mitigating vulnerabilities

check Decrypting cryptographic concepts and fundamentals

check Getting physical with physical security design concepts

Security must be part of the design of information systems, as well as the facilities housing information systems and workers, which is covered in the Security Architecture and Engineering domain. This domain represents 13 percent of the CISSP certification exam.

Implement and Manage Engineering Processes Using Secure Design Principles

It is a natural human tendency to build things without first considering ...

Get CISSP For Dummies, 6th Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.