O'Reilly logo

(ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide, 8th Edition by Darril Gibson, James M Stewart, Mike Chapple

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 15Security Assessment and Testing

THE CISSP EXAM TOPICS COVERED IN THIS CHAPTER INCLUDE:

  • images Domain 6: Security Assessment and Testing
    • 6.1. Design and validate assessment, test, and audit strategies
      • 6.1.1 Internal
      • 6.1.2 External
      • 6.1.3 Third-party
    • 6.2. Conduct security control testing
      • 6.2.1 Vulnerability assessment
      • 6.2.2 Penetration testing
      • 6.2.3 Log reviews
      • 6.2.4 Synthetic transactions
      • 6.2.5 Code review and testing
      • 6.2.6 Misuse case testing
      • 6.2.7 Test coverage analysis
      • 6.2.8 Interface testing
    • 6.3. Collect security process data
      • 6.3.1 Account management
      • 6.3.2 Management review and approval
      • 6.3.3 Key performance and risk indicators ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required