Book description
This is the eBook version of the print title. Note that the eBook does not provide access to the practice test software that accompanies the print book. Access to the digital edition of the Cram Sheet is available through product registration at Pearson IT Certification; or see instructions in back pages of your eBook.
CISSP Exam Cram, Fourth Edition, is the perfect study guide to help you pass the tough new electronic version of the CISSP exam. It provides coverage and practice questions for every exam topic, including substantial new coverage of encryption, cloud security, information lifecycles, security management/governance, and more. The book contains an extensive set of preparation tools, such as quizzes, Exam Alerts, and two practice exams.
Covers the critical information you’ll need to pass the CISSP exam!
- Enforce effective physical security throughout your organization
- Apply reliable authentication, authorization, and accountability
- Design security architectures that can be verified, certified, and accredited
- Understand the newest attacks and countermeasures
- Use encryption to safeguard data, systems, and networks
- Systematically plan and test business continuity/disaster recovery programs
- Protect today’s cloud, web, and database applications
- Address global compliance issues, from privacy to computer forensics
- Develop software that is secure throughout its entire lifecycle
- Implement effective security governance and risk management
- Use best-practice policies, procedures, guidelines, and controls
- Ensure strong operational controls, from background checks to security audits
Table of contents
- About This E-Book
- Title Page
- Copyright Page
- Contents at a Glance
- Table of Contents
- About the Author
- About the Technical Reviewers
- Dedication
- Acknowledgments
- We Want to Hear from You!
- Reader Services
- Introduction
- Chapter 1. The CISSP Certification Exam
-
Chapter 2. Logical Asset Security
- Introduction
- Basic Security Principles
- Data Management: Determine and Maintain Ownership
- Data Standards
- Data Security, Protection, Sharing, and Dissemination
- Classifying Information and Supporting Assets
- Asset Management and Governance
- Determine Data Security Controls
- Laws, Standards, Mandates and Resources
- Exam Prep Questions
- Answers to Exam Prep Questions
- Need to Know More?
-
Chapter 3. Physical Asset Security
- Introduction
- Physical Security Risks
- Facility Concerns and Requirements
- Perimeter Controls
- Employee Access Control
- Environmental Controls
- Electrical Power
- Equipment Life Cycle
- Fire Prevention, Detection, and Suppression
- Alarm Systems
- Exam Prep Questions
- Answers to Exam Prep Questions
- Suggested Reading and Resources
-
Chapter 4. Security and Risk Management
- Introduction
- Security Governance
- Protection of Intellectual Properly
- Privacy Laws and Protection of Personal Information
- Relevant Laws and Regulations
- United States Legal System and Laws
- International Legal Systems and Laws
- Computer Crime and Hackers
- Risk Management Concepts
- Countermeasure Selection
- Develop and Implement Security Policy
- Types of Controls
- Implement Personnel Security
- Security Education, Training, and Awareness
- Professional Ethics Training and Awareness
- Exam Prep Questions
- Answers to Exam Prep Questions
- Need to Know More?
-
Chapter 5. Security Engineering
- Introduction
- Fundamental Concepts of Security Models
- Security Architecture
- Common Formal Security Models
- Product Security Evaluation Models
- System Validation
- Security Guidelines and Governance
- Vulnerabilities of Security Architectures
- Exam Prep Questions
- Answers to Exam Prep Questions
- Need to Know More?
-
Chapter 6. The Application and Use of Cryptography
- Introduction
- Cryptographic Basics
- History of Encryption
- Steganography
- Algorithms
- Cipher Types and Methods
- Symmetric Encryption
- Asymmetric Encryption
- Hybrid Encryption
- Integrity and Authentication
- Public Key Infrastructure
- Email Protection Mechanisms
- Securing TCP/IP with Cryptographic Solutions
- Cryptographic Attacks
- Exam Prep Questions
- Answers to Exam Prep Questions
- Need to Know More?
-
Chapter 7. Communications and Network Security
- Introduction
- Secure Network Design
- Network Models and Standards
- TCP/IP
- LANs and Their Components
- Communication Standards
- Network Equipment
- Routing
- WANs and Their Components
- Cloud Computing
- Voice Communications and Wireless Communications
- Network Access Control Devices
- Remote Access
- Message Privacy and Multimedia Collaboration
- Exam Prep Questions
- Answers to Exam Prep Questions
- Need to Know More?
- Chapter 8. Identity and Access Management
-
Chapter 9. Security Assessment and Testing
- Introduction
- Security Assessments and Penetration Test Strategies
- Test Techniques and Methods
- Security Threats and Vulnerabilities
- Network Security Threats and Attack Techniques
- Access Control Threats and Attack Techniques
- Social-based Threats and Attack Techniques
- Malicious Software Threats and Attack Techniques
- How Computer Crime Has Changed
- Well-Known Computer Crimes and Criminals
- Investigating Computer Crime
- Forensics
- Investigations
- Trial
- Exam Prep Questions
- Answers to Exam Prep Questions
- Need to Know More?
-
Chapter 10. Security Operations
- Introduction
- Foundational Security Operations Concepts
- Resource Protection
- Telecommunication Controls
- System Resilience, Fault Tolerance, and Recovery Controls
- Monitoring and Auditing Controls
- Intrusion Detection Systems
- Responding to Operational Security Incidents
- The Disaster Recovery Life Cycle
- Exam Prep Questions
- Answers to Exam Prep Questions
- Need to Know More?
- Chapter 11. Software Development Security
- Chapter 12. Business Continuity Planning
- Practice Exam I
- Answers to Practice Exam I
- Practice Exam II
- Answers to Practice Exam II
- Glossary
- Index
-
Exam Cram The CISSP Cram Sheet
- Logical and Physical Asset Security
- Security and Risk Management
- Security Engineering
- The Application and Use of Cryptography
- Telecommunications and Communications and Network Security
- Identity and Access Management
- Security Assessment and Testing
- Security Assessment
- Software Development Security
- Business Continuity Planning
- Where are the companion content files?
- Code Snippets
Product information
- Title: CISSP Exam Cram, 4th Edition
- Author(s):
- Release date: August 2016
- Publisher(s): Pearson IT Certification
- ISBN: 9780134209555
You might also like
book
CISSP Exam Cram, 5th Edition
, is the perfect study guide to help you pass the new eight domain version of …
book
CompTIA Network+ N10-007 Exam Cram, 6th Edition
Prepare for CompTIA Network+ N10-007 exam success with this CompTIA approved Exam Cram from Pearson IT …
book
CompTIA Network+ Exam Cram, Third Edition
The new edition of CompTIA Network+ Exam Cram is the first book to cover the Network+ …
book
CISSP (ISC)² Certification Practice Exams and Tests
Pass the Certified Information Systems Security Professional Exam with our all-new set of practice exams designed …