DOMAIN 2 Security Operations

SECURITY OPERATIONS AND ADMINISTRATION entails the identification of an organization's information assets and the documentation required for the implementations of policies, standards, procedures, and guidelines that ensure confidentiality, integrity, and availability. Working with management information owners, custodians, and users, the appropriate data classification scheme is defined for proper handling of both hardcopy and electronic information.


The following topics are addressed in this chapter:

  • Understand and comply with Codes of Ethics
    • (ISC)2 code of ethics
    • Organizational code of ethics
  • Understand security concepts
    • Confidentiality
    • Integrity
    • Availability
    • Non-repudiation
    • Privacy
    • Least privilege ...

Get The Official (ISC)2 Guide to the SSCP CBK, 4th Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.