IN THIS CHAPTER
Using secure design principles
Understanding security models
Choosing the right controls and countermeasures
Recognizing security capabilities in information systems
Assessing and mitigating vulnerabilities
Decrypting cryptographic concepts and fundamentals
Getting physical with physical security design concepts
Security must be part of the design of information systems, as well as the facilities housing information systems and workers, which is covered in the Security Architecture and Engineering domain. This domain represents 13 percent of the CISSP certification exam.
It is a natural human tendency to build things without first considering ...