This chapter starts with an exam cram that consists of quick revision points from the seventh domain of the CISSP CBK, security operations, and the eighth domain called software development security. This is followed by a mock test from these two domains. The last topic of this chapter provides additional references for further reading:
CISSP in 21 Days - Second Edition
By :
CISSP in 21 Days - Second Edition
By:
Overview of this book
Certified Information Systems Security Professional (CISSP) is an internationally recognized and coveted qualification. Success in this respected exam opens the door to your dream job as a security expert with an eye-catching salary. But passing the final exam is challenging. Every year a lot of candidates do not prepare sufficiently for the examination, and fail at the final stage. This happens when they cover everything but do not revise properly and hence lack confidence.
This simple yet informative book will take you through the final weeks before the exam with a day-by-day plan covering all of the exam topics. It will build your confidence and enable you to crack the Gold Standard exam, knowing that you have done all you can to prepare for the big day.
This book provides concise explanations of important concepts in all 10 domains of the CISSP Common Body of Knowledge (CBK). Starting with Confidentiality, Integrity, and Availability, you will focus on classifying information and supporting assets. You will understand data handling requirements for sensitive information before gradually moving on to using secure design principles while implementing and managing engineering processes. You will understand the application of cryptography in communication security and prevent or mitigate strategies for network attacks. You will also learn security control requirements and how to assess their effectiveness. Finally, you will explore advanced topics such as automated and manual test result analysis and reporting methods.
A complete mock test is included at the end to evaluate whether you're ready for the exam. This book is not a replacement for full study guides; instead, it builds on and reemphasizes concepts learned from them.
Table of Contents (27 chapters)
CISSP in 21 Days Second Edition
Credits
About the Author
About the Reviewer
www.PacktPub.com
Preface
Free Chapter
Day 1 – Security and Risk Management - Security, Compliance, and Policies
Day 2 – Security and Risk Management - Risk Management, Business Continuity, and Security Education
Day 3 – Asset Security - Information and Asset Classification
Day 4 – Asset Security - Data Security Controls and Handling
Day 5 – Exam Cram and Practice Questions
Day 6 – Security Engineering - Security Design, Practices, Models, and Vulnerability Mitigation
Day 7 – Security Engineering - Cryptography
Day 8 – Communication and Network Security - Network Security
Day 9 – Communication and Network Security - Communication Security
Day 10 – Exam Cram and Practice Questions
Day 11 – Identity and Access Management - Identity Management
Day 12 – Identity and Access Management - Access Management, Provisioning, and Attacks
Day 13 – Security Assessment and Testing - Designing, Performing Security Assessment, and Tests
Day 14 – Security Assessment and Testing - Controlling, Analyzing, Auditing, and Reporting
Day 15 – Exam Cram and Practice Questions
Day 16 – Security Operations - Foundational Concepts
Day 17 – Security Operations - Incident Management and Disaster Recovery
Day 18 – Software Development Security - Security in Software Development Life Cycle
Day 19 – Software Development Security - Assessing effectiveness of Software Security
Day 20 – Exam Cram and Practice Questions
Day 21 – Exam Cram and Mock Test
Customer Reviews