Domain 6

Security Assessment & Testing

“Security Assessment and Testing” covers a broad range of ongoing and point-of-time based testing methods used to determine vulnerabilities and associated risk. Mature system development life cycles include security testing and assessment as part of the development, operations, and disposition phases of a system’s life. The fundamental purpose of test and evaluation (T&E) is to provide knowledge to assist in managing the risks involved in developing, producing, operating, and sustaining systems and capabilities. T&E measures progress in both system and capability development. T&E provides knowledge of system ...

Get Official (ISC)2 Guide to the CISSP CBK, 4th Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.