O'Reilly logo

CISSP Rapid Review by Darril Gibson

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 7. Operations Security

The Operations Security domain focuses on the policies, procedures, and controls used in many of the day-to-day operations of an organization. When preparing for this domain, you should have a good understanding of basic controls specified in written security policies, such as the principle of least privilege, separation of duties, and job rotation. Additionally, you should understand the purpose and methodologies used in several management controls, such as change management and vulnerability management. Detective and preventive controls such as intrusion detection and prevention systems help detect and prevent many attacks, but some still get through. When an incident does occur, an effective incident response ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required