DOMAIN 2 Security Operations

SECURITY OPERATIONS AND ADMINISTRATION entails the identification of an organization's information assets and the documentation required for the implementations of policies, standards, procedures, and guidelines that ensure confidentiality, integrity, and availability. Working with management information owners, custodians, and users, the appropriate data classification scheme is defined for proper handling of both hardcopy and electronic information.


The following topics are addressed in this chapter:

  • Understand and comply with Codes of Ethics
    • (ISC)2 code of ethics
    • Organizational code of ethics
  • Understand security concepts
    • Confidentiality
    • Integrity
    • Availability
    • Non-repudiation
    • Privacy
    • Least privilege ...

Get The Official (ISC)2 Guide to the SSCP CBK, 4th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.