Book description
The CISSP certification is the most prestigious, globally-recognized, vendor neutral exam for information security professionals. The newest edition of this acclaimed study guide is aligned to cover all of the material included in the newest version of the exam’s Common Body of Knowledge. The ten domains are covered completely and as concisely as possible with an eye to acing the exam.
Each of the ten domains has its own chapter that includes specially designed pedagogy to aid the test-taker in passing the exam, including: Clearly stated exam objectives; Unique terms/Definitions; Exam Warnings; Learning by Example; Hands-On Exercises; Chapter ending questions. Furthermore, special features include: Two practice exams; Tiered chapter ending questions that allow for a gradual learning curve; and a self-test appendix
- Provides the most complete and effective study guide to prepare you for passing the CISSP exam—contains only what you need to pass the test, with no fluff!
- Eric Conrad has prepared hundreds of professionals for passing the CISSP exam through SANS, a popular and well-known organization for information security professionals
- Covers all of the new information in the Common Body of Knowledge updated in January 2012, and also provides two practice exams, tiered end-of-chapter questions for a gradual learning curve, and a complete self-test appendix
Table of contents
- Cover image
- Title page
- Table of Contents
- Copyright
- Acknowledgments
- About the authors
- Chapter 1. Introduction
-
Chapter 2. Domain 1: Access Control
- Exam objectives in this chapter
- Unique Terms and Definitions
- Introduction
- Cornerstone Information Security Concepts
- Access Control Models
- Procedural Issues for Access Control
- Access Control Defensive Categories and Types
- Authentication Methods
- Access Control Technologies
- Types of Attackers
- Assessing Access Control
- Summary of Exam Objectives
- Self Test
- Self-test quick answer key
- REFERENCES
- Chapter 3. Domain 2: Telecommunications and Network Security
- Chapter 4. Domain 3: Information Security Governance and Risk Management
-
Chapter 5. Domain 4: Software Development Security
- Exam objectives in this chapter
- Unique Terms and Definitions
- Introduction
- Programming Concepts
- Application Development Methods
- Object-Orientated Design and Programming
- Software Vulnerabilities, Testing, and Assurance
- Databases
- Artificial Intelligence
- Summary of Exam Objectives
- Self Test
- Self Test Quick Answer Key
- REFERENCES
-
Chapter 6. Domain 5: Cryptography
- Exam objectives in this chapter
- Unique Terms and Definitions
- Introduction
- Cornerstone Cryptographic Concepts
- History of Cryptography
- Symmetric Encryption
- Asymmetric Encryption
- Hash Functions
- Cryptographic Attacks
- Implementing Cryptography
- Summary of Exam Objectives
- Self Test
- Self Test Quick Answer Key
- REFERENCES
-
Chapter 7. Domain 6: Security Architecture and Design
- Exam objectives in this chapter
- Unique Terms and Definitions
- Introduction
- Secure System Design Concepts
- Secure Hardware Architecture
- Secure Operating System and Software Architecture
- Virtualization and Distributed Computing
- System Vulnerabilities, Threats, and Countermeasures
- Security Models
- Evaluation Methods, Certification, and Accreditation
- Summary of Exam Objectives
- Self Test
- Self Test Quick Answer Key
- REFERENCES
- Chapter 8. Domain 7: Operations Security
-
Chapter 9. Domain 8: Business Continuity and Disaster Recovery Planning
- Exam objectives in this chapter
- Unique Terms and Definitions
- Introduction
- BCP and DRP Overview and Process
- Developing a BCP/DRP
- Backups and Availability
- DRP Testing, Training, and Awareness
- BCP/DRP Maintenance
- Specific BCP/DRP Frameworks
- Summary of Exam Objectives
- Self Test
- Self Test Quick Answer Key
- REFERENCES
-
Chapter 10. Domain 9: Legal, Regulations, Investigations, and Compliance
- Exam objectives in this chapter
- Unique Terms and Definitions
- Introduction
- Major legal systems
- Criminal, Civil, and Administrative Law
- Information Security Aspects of Law
- Forensics
- Legal Aspects of Investigations
- Important Laws and Regulations
- Security and Third Parties
- Ethics
- Summary of Exam Objectives
- Self Test
- Self Test Quick Answer Key
- REFERENCES
- Chapter 11. Domain 10: Physical (Environmental) Security
-
APPENDIX: Self Test
- Chapter 2, Domain 1: Access Control
- Chapter 3, Domain 2: Telecommunications and Network Security
- Chapter 4, Domain 3: Information Security Governance and Risk Management
- Chapter 5, Domain 4: Software Development Security
- Chapter 6, Domain 5: Cryptography
- Chapter 7, Domain 6: Security Architecture and Design
- Chapter 8, Domain 7: Operations Security
- Chapter 9, Domain 8: Business Continuity and Disaster Recovery Planning
- Chapter 10, Domain 9: Legal, Regulations, Investigations, and Compliance
- Chapter 11, Domain 10: Physical (Environmental) Security
- Glossary
- Index
Product information
- Title: CISSP Study Guide, 2nd Edition
- Author(s):
- Release date: September 2012
- Publisher(s): Syngress
- ISBN: 9781597499682
You might also like
video
CISSP Video Course
The fast, powerful way to prepare for your CISSP exam! 30+ hours of personal video training …
book
Official (ISC)2 Guide to the CISSP CBK, 4th Edition
As a result of a rigorous, methodical process that (ISC) follows to routinely update its credential …
book
The Official (ISC)2 Guide to the CISSP CBK Reference, 5th Edition
The only official, comprehensive reference guide to the CISSP All new for 2019 and beyond, this …
book
CISSP in 21 Days - Second Edition
Boost your confidence and get the competitive edge you need to crack the exam in just …