Selamat datang di Scribd!

Lewati carousel

Cissp PDF

Diunggah oleh

zollian.fx

0% menganggap dokumen ini bermanfaat (0 suara)

108 tayangan2 halaman

Judul Asli

CISSP.pdf

Hak Cipta

Format Tersedia

PDF, TXT atau baca online dari Scribd

Bagikan dokumen Ini

Bagikan atau Tanam Dokumen

Opsi Berbagi

Apakah menurut Anda dokumen ini bermanfaat?

Apakah konten ini tidak pantas?

Laporkan Dokumen Ini

Hak Cipta:

Format Tersedia

Unduh sebagai PDF, TXT atau baca online dari Scribd

Tandai sebagai konten tidak pantas

0% menganggap dokumen ini bermanfaat (0 suara)

108 tayangan2 halaman

Cissp PDF

Diunggah oleh

zollian.fx

Hak Cipta:

Format Tersedia

Unduh sebagai PDF, TXT atau baca online dari Scribd

Tandai sebagai konten tidak pantas

Lompat ke Halaman

Anda di halaman 1dari 2

Cari di dalam dokumen

Sunday, 23 April 2017 12:09 PM

CISSP Domains
The CISSP examination domains and weights are:

Domains Weight

1. Security and Risk Management 16%

2. Asset Security 10%

3. Security Engineering 12%

4. Communication and Network Security 12%

5. Identity and Access Management 13%

6. Security Assessment and Testing 11%

7. Security Operations 16%

8. Software Development Security 10%

Total 100%
Security and Risk Management (Security, Risk, Compliance, Law, Regulations, and Business Continuity)
Confidentiality, integrity, and availability concepts
Security governance principles
Compliance
Legal and regulatory issues
Professional ethic
Security policies, standards, procedures and guidelines

Asset Security (Protecting Security of Assets)

Information and asset classification
Ownership (e.g. data owners, system owners)
Protect privacy
Appropriate retention
Data security controls
Handling requirements (e.g. markings, labels, storage)

Security Engineering (Engineering and Management of Security)

Engineering processes using secure design principles
Security models fundamental concepts
Security evaluation models
Security capabilities of information systems
Security architectures, designs, and solution elements vulnerabilities
Web-based systems vulnerabilities
Mobile systems vulnerabilities
Embedded devices and cyber-physical systems vulnerabilities
Cryptography
Site and facility design secure principles
Physical security

Communication and Network Security (Designing and Protecting Network Security)

Secure network architecture design (e.g. IP and non-IP protocols, segmentation)
Secure network components
Secure communication channels
Network attacks

Identity and Access Management (Controlling Access and Managing Identity)

Physical and logical assets control

CISSP Page 1
Physical and logical assets control
Identification and authentication of people and devices
Identity as a service (e.g. cloud identity)
Third-party identity services (e.g. on-premise)
Access control attacks
Identity and access provisioning lifecycle (e.g. provisioning review)

Security Assessment and Testing (Designing, Performing, and Analyzing Security Testing)
Assessment and test strategies
Security process data (e.g. management and operational controls)
Security control testing
Test outputs (e.g. automated, manual)
Security architectures vulnerabilities

Security Operations (Foundational Concepts, Investigations, Incident Management, and Disaster Recovery)
Investigations support and requirements
Logging and monitoring activities
Provisioning of resources
Foundational security operations concepts
Resource protection techniques
Incident management
Preventative measures
Patch and vulnerability management
Change management processes
Recovery strategies
Disaster recovery processes and plans
Business continuity planning and exercises
Physical security
Personnel safety concerns

Software Development Security (Understanding, Applying, and Enforcing Software Security)

Security in the software development lifecycle
Development environment security controls
Software security effectiveness
Acquired software security impact

From <https://www.isc2.org/cissp-domains/default.aspx>

CISSP Page 2

Anda mungkin juga menyukai

The 8 New CISSP Domains
Dokumen35 halaman
The 8 New CISSP Domains
uwb_group
Belum ada peringkat
Week 1 Lecture 1 Information Security
Dokumen28 halaman
Week 1 Lecture 1 Information Security
Zulkifl Hasan
Belum ada peringkat
CISSP Domains (4 Edition)
Dokumen3 halaman
CISSP Domains (4 Edition)
Andinet
Belum ada peringkat
Cloud Security
Dokumen4 halaman
Cloud Security
Prince Kumar Bhatia
Belum ada peringkat
How To Prepare For The CISSP Exam: Outline, Study Tips & Strategy
Dokumen37 halaman
How To Prepare For The CISSP Exam: Outline, Study Tips & Strategy
Dodo winy
Belum ada peringkat
Introduction To Information Security
Dokumen51 halaman
Introduction To Information Security
mahmoodghanem
Belum ada peringkat
CISSP Student Guide
Dokumen913 halaman
CISSP Student Guide
gurunge
100% (3)
CS 620 Introduction To Information Security: Dr. Karen Forcht Department of Computer Science James Madison University
Dokumen51 halaman
CS 620 Introduction To Information Security: Dr. Karen Forcht Department of Computer Science James Madison University
Grace Joy Tano Millendez
Belum ada peringkat
CISSP Certification Study Guide Topics
Dokumen913 halaman
CISSP Certification Study Guide Topics
thetzo
100% (5)
CISSP Exam Outline PDF
Dokumen15 halaman
CISSP Exam Outline PDF
sri
Belum ada peringkat
Certification: Exam Outline
Dokumen15 halaman
Certification: Exam Outline
justforfun2009
Belum ada peringkat
CISSP Domain 1 Guide: Security and Risk Management Fundamentals
Dokumen16 halaman
CISSP Domain 1 Guide: Security and Risk Management Fundamentals
Romeo Sincere
Belum ada peringkat
Administrating Security
Dokumen27 halaman
Administrating Security
devinasharad
Belum ada peringkat
Lecture 5-Information Security Governance-Part 3 - V2.0
Dokumen48 halaman
Lecture 5-Information Security Governance-Part 3 - V2.0
Hasham Akram
Belum ada peringkat
Information Security: Code: ETCS-401
Dokumen27 halaman
Information Security: Code: ETCS-401
Uday Verma
Belum ada peringkat
Security Domains Overview
Dokumen6 halaman
Security Domains Overview
Dudeviswa
Belum ada peringkat
SSCP Exam Outline
Dokumen11 halaman
SSCP Exam Outline
ironman
Belum ada peringkat
Lecture 4-Information Security Governance-Part 2
Dokumen40 halaman
Lecture 4-Information Security Governance-Part 2
Hasham Akram
Belum ada peringkat
CS461 01.overview
Dokumen30 halaman
CS461 01.overview
pawaryogesh
Belum ada peringkat
CISSP ISSAP Exam Outline v0120
Dokumen11 halaman
CISSP ISSAP Exam Outline v0120
Federico
Belum ada peringkat
Lecture - IsPDM
Dokumen105 halaman
Lecture - IsPDM
Khurram Sheraz
Belum ada peringkat
Network Security Postgraduate Course Overview
Dokumen34 halaman
Network Security Postgraduate Course Overview
Mohammed Al-Radwan
Belum ada peringkat
CISA Syllabus and Briefing
Dokumen2 halaman
CISA Syllabus and Briefing
bdt.cracker
Belum ada peringkat
CISSP Exam Outline English April 2021 PDF
Dokumen16 halaman
CISSP Exam Outline English April 2021 PDF
Kevin Monkam
Belum ada peringkat
Network Security Postgraduate Course
Dokumen34 halaman
Network Security Postgraduate Course
Mohammed Al-Radwan
Belum ada peringkat
Network Security Overview
Dokumen14 halaman
Network Security Overview
tushar63
Belum ada peringkat
International Journal On Cryptography and Information Security IJCIS
Dokumen2 halaman
International Journal On Cryptography and Information Security IJCIS
ijcisjournal
Belum ada peringkat
Introduction to Computer Security Slide Set 1
Dokumen30 halaman
Introduction to Computer Security Slide Set 1
kashokcse16
Belum ada peringkat
Lecture 1-Overview & Course Projects
Dokumen74 halaman
Lecture 1-Overview & Course Projects
Hasham Akram
Belum ada peringkat
Control and Accounting Information Systems
Dokumen63 halaman
Control and Accounting Information Systems
NurulHidayah
Belum ada peringkat
Session Slides
Dokumen90 halaman
Session Slides
ROHIT
Belum ada peringkat
Ch-17 Control and Governance of Information System
Dokumen17 halaman
Ch-17 Control and Governance of Information System
sheetalthomas
Belum ada peringkat
Security and Protection
Dokumen17 halaman
Security and Protection
Westore Acid
Belum ada peringkat
CCST+Cybersecurity+Objecitve+Domain Cisco Final wCiscoLogo
Dokumen3 halaman
CCST+Cybersecurity+Objecitve+Domain Cisco Final wCiscoLogo
Qazi Zayad
Belum ada peringkat
Chapter 1
Dokumen28 halaman
Chapter 1
highway2prakas
Belum ada peringkat
Introduction To Information Security and Information Security Management
Dokumen33 halaman
Introduction To Information Security and Information Security Management
Gusti Arsyad
100% (1)
07 PENDIENTE ECSS-brochure-2023
Dokumen14 halaman
07 PENDIENTE ECSS-brochure-2023
enrique prats perez
Belum ada peringkat
Cyber Security
Dokumen84 halaman
Cyber Security
Anjali Mahajan
Belum ada peringkat
Assessment Presentation: Fundamentals of Information Systems Security
Dokumen24 halaman
Assessment Presentation: Fundamentals of Information Systems Security
Brandon Dean
Belum ada peringkat
Class 1 Sept 12, 2021
Dokumen34 halaman
Class 1 Sept 12, 2021
Angel Rivera
Belum ada peringkat
Lesson 1 Introduction To Information Security
Dokumen42 halaman
Lesson 1 Introduction To Information Security
razel gicale
Belum ada peringkat
CISSP Common Body of Knowledge Review in
Dokumen145 halaman
CISSP Common Body of Knowledge Review in
Sivasakti Marimuthu
Belum ada peringkat
Chapter
Dokumen19 halaman
Chapter
mohamed altom
Belum ada peringkat
Course Overview: This Course Provides In-Depth Coverage of The Eight Domains Required To Pass The CISSP Exam
Dokumen30 halaman
Course Overview: This Course Provides In-Depth Coverage of The Eight Domains Required To Pass The CISSP Exam
Abdul Ghaffar
Belum ada peringkat
01 TEB2193 IAS - Intro Computer Security and IAS
Dokumen38 halaman
01 TEB2193 IAS - Intro Computer Security and IAS
Mandeep Singh
Belum ada peringkat
CISA Exam Course Outline Domains
Dokumen2 halaman
CISA Exam Course Outline Domains
WajidSyed
Belum ada peringkat
Lecture 2 Information Security Management
Dokumen44 halaman
Lecture 2 Information Security Management
Hasham Akram
100% (1)
Information Security Audit and Features
Dokumen45 halaman
Information Security Audit and Features
Aditya
Belum ada peringkat
Lecture 3-Information Security Governance - Part 1
Dokumen42 halaman
Lecture 3-Information Security Governance - Part 1
Hasham Akram
Belum ada peringkat
Oman Presentation MDS 19th June
Dokumen173 halaman
Oman Presentation MDS 19th June
shiv kumar
Belum ada peringkat
Roman Power Works Cyber Security
Dokumen3 halaman
Roman Power Works Cyber Security
caro global
Belum ada peringkat
NIST and ISO Security Controls - 2016
Dokumen8 halaman
NIST and ISO Security Controls - 2016
igk74538
Belum ada peringkat
Week 2 Slides - PowerPoint
Dokumen18 halaman
Week 2 Slides - PowerPoint
Aditya
Belum ada peringkat
ISS404: Security Architecture, Design and Models Syllabus
Dokumen2 halaman
ISS404: Security Architecture, Design and Models Syllabus
LeNantais Sonderangebote
Belum ada peringkat
Module 2 - Information Security Concepts
Dokumen32 halaman
Module 2 - Information Security Concepts
sc2bd9vj2f
Belum ada peringkat
Cybersecurity Solutions From ManageEngine
Dokumen9 halaman
Cybersecurity Solutions From ManageEngine
Ashish Srivastava
Belum ada peringkat
CS 651 Computer Systems Security - Individual Project Information Systems Security (ISS) Governance Committee Saurav Vaidya Jan 27, 2016
Dokumen10 halaman
CS 651 Computer Systems Security - Individual Project Information Systems Security (ISS) Governance Committee Saurav Vaidya Jan 27, 2016
ghiraula
Belum ada peringkat
CISSP in 21 Days - Second Edition
Dari Everand
CISSP in 21 Days - Second Edition
M. L. Srinivasan
Penilaian: 3 dari 5 bintang
3/5 (1)
CISSP Certification Exam Study Guide: (Cerified Information Systems Security Professional)
Dari Everand
CISSP Certification Exam Study Guide: (Cerified Information Systems Security Professional)
Kumud Kumar
Belum ada peringkat
CISSP Fast Track Master: CISSP Essentials for Exam Success - Exam Cram Notes: 1st Edition - 2024
Dari Everand
CISSP Fast Track Master: CISSP Essentials for Exam Success - Exam Cram Notes: 1st Edition - 2024
VERSAtile Reads
Belum ada peringkat
CISSP
Dokumen2 halaman
CISSP
zollian.fx
Belum ada peringkat
CISSP
Dokumen2 halaman
CISSP
zollian.fx
Belum ada peringkat
CISSP
Dokumen2 halaman
CISSP
zollian.fx
Belum ada peringkat
Container Depot Warehousing
Dokumen1 halaman
Container Depot Warehousing
zollian.fx
Belum ada peringkat
Primary School Education Booklet
Dokumen24 halaman
Primary School Education Booklet
zollian.fx
Belum ada peringkat
Directasia Travel Insurance Terms and Conditions
Dokumen31 halaman
Directasia Travel Insurance Terms and Conditions
zollian.fx
Belum ada peringkat
Dtu Module 1.04 'Nasdaq Versus Nyse
Dokumen2 halaman
Dtu Module 1.04 'Nasdaq Versus Nyse
zollian.fx
Belum ada peringkat