CISSP guide (Updated for current Exam)

CISSP certification has become a pre-requisite for anyone looking to make a career in information security and certification provides professionals with an objective measure of competence and a globally recognised standard of achievement.

As an information security professional you should either have the CISSP certificate, be working towards it or you will be thinking about doing it in the near future.

The issue isn't your current qualification status, it's how current your knowledge is, in relation to the the latest development in this ever-changing field. Purchase a copy of the Official (ISC)2 Guide to the CISSP CBK, Second Edition, it will bring you bang up to date and keep you ahead of the game.

If you are working towards your CISSP examination and want an inexpensive guide to the common body of knowledge (CBK), you should purchase this guide as it provides unrivalled preparation for the certification exam.

Recognised as one of the best tools available for the information security professional!
Updated and covering the latest technological developments, this guide an ideal primer for anyone taking the CISSP examination. Covering the relevant knowledge needed to pass the examination;
Comes with exam simulation software on CD, allowing you to test your knowledge prior to taking the CISSP exam. Doing so allows you to indentify gaps in your knowledge that need further study;
Endorsed by (ISC)2, as well as written and reviewed by CISSPs, thus ensuring the information in the book is factual, up to the minute and relevant.

Endorsed by the (ISC)², this book provides unrivalled preparation for the certification exam that is both up to date and authoritative. It is compiled and reviewed by CISSPs and (ISC)² members. It provides an exhaustive review of the 10 current domains of the CBK—and the high-level topics contained in each domain.

The 10 CISSP CBK domains are:

1. Access Control
2. Application Security
3. Business Continuity and Disaster Recovery Planning
4. Cryptography
5. Information Security and Risk Management
6. Legal, Regulations, Compliance and Investigations
7. Operations Security
8. Physical (Environmental) Security
9. Security Architecture and Design
10. Telecommunications and Network Security

Unique and exceptionally thorough, this edition includes a CD with over 200 sample questions and sample exams. It also includes a full software test simulation that provides the same number and types of questions with the same allotment of time allowed in the actual exam. It will even grade the exam, provide the correct answers, and identify areas where more study is needed.

Key Features and Benefits:

• Updated and covering the latest technological developments, this guide an ideal primer for anyone taking the CISSP examination. Covering most of the relevant knowledge needed to pass the examination.
• Comes with exam simulation software on CD, allowing you to test your knowledge prior to taking the CISSP exam. Doing so allows you to indentify gaps in your knowledge that need further study.
• Endorsed by (ISC)², as well as written and reviewed by CISSPs, thus ensuring the information in the book is factual, up to the minute and relevant.

Get Ahead - Buy your copy of the CISSP CBK Today!

Unique, inexpensive and exceptionally thorough >>

Order the latest version of the CISSP CBK here today!

Contents of the book:

OFFICIAL (ISC)2 GUIDE TO THE CISSP CBK, SECOND EDITION

INFORMATION SECURITY AND RISK MANAGEMENT

• Introduction
• The Business Case for Information Security Management
• Core Information Security Principles: Availability, Integrity,
• Information Security Management Governance
• Organisational Behaviour
• Security Awareness, Training, and Education
• Risk Management
• Ethics
• Data Classification Policy
• Data Handling Policy
• References
• Other References
• Sample Questions

ACCESS CONTROL

• Introduction
• Definitions and Key Concepts
• Access Control Categories and Types
• Access Control Threats
• Access to Systems
• Access to Data
• Intrusion Detection and Prevention Systems
• Access Control Assurance
• References.
• Sample Questions

CRYPTOGRAPHY

• Introduction
• Key Concepts and Definitions
• Encryption Systems
• Message Integrity Controls
• Digital Signatures
• Encryption Management
• Cryptanalysis and Attacks

• Encryption Usage

• References
• Sample Questions

PHYSICAL (ENVIRONMENTAL) SECURITY

• Introduction
• Site Location
• The Layered Defence Model
• Information Protection and Management Services
• Summary
• References
• Sample Questions

SECURITY ARCHITECTURE AND DESIGN

• Introduction
• Security Architecture and Design Components and Principles
• Security Models and Architecture Theory
• Security Product Evaluation Methods and Criteria
• Sample Questions

BUSINESS CONTINUITY AND DISASTER RECOVERY PLANNING

• Introduction
• Organisation of the BCP/DRP Domain Chapter
• Terminology
• Appendix A: Addressing Legislative Compliance within Business Continuity Plans

TELECOMMUNICATIONS AND NETWORK SECURITY

• Introduction
• Basic Concepts
• Layer 1: Physical Layer
• Layer 2: Data-Link Layer
• Layer 3: Network Layer
• Layer 4: Transport Layer
• Layer 5: Session Layer
• Layer 6: Presentation Layer
• Layer 7: Application Layer
• Trivial File Transfer Protocol (TFTP)
• General References
• Sample Questions
• Endnotes

APPLICATION SECURITY

• Domain Description and Introduction
• Applications Development and Programming Concepts and Protection
• Audit and Assurance Mechanisms
• Malicious Software (Malware)
• The Database and Data Warehousing Environment
• Web Application Environment
• Summary
• References

OPERATIONS SECURITY

• Introduction
• Privileged Entity Controls
• Resource Protection
• Continuity of Operations
• Change Control Management
• Summary
• References
• Sample Questions

LEGAL, REGULATIONS, COMPLIANCE AND INVESTIGATIONS

• Introduction
• Major Legal Systems
• Information Technology Laws and Regulations
• Incident Response
• Computer Forensics
• Conclusions
• References
• Sample Questions

ANSWERS TO SAMPLE QUESTIONS

CERTIFIED INFORMATION SYSTEMS SECURITY PROFESSIONAL (CISSP®) CANDIDATE INFORMATION BULLETIN

GLOSSARY

INDEX

Order the latest version of the CISSP CBK here today!