Learn, prepare, and practice for CISSP exam success with this Cert Guide from Pearson IT Certification, a leader in IT certification learning.
- Master the latest CISSP exam topics
- Assess your knowledge with chapter-ending quizzes
- Review key concepts with exam preparation tasks
- Practice with realistic exam questions
- Get practical guidance for test taking strategies
CISSP Cert Guide, Fourth Edition is a comprehensive exam study guide. Leading IT certification experts Robin Abernathy and Darren Hayes share preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Material is presented in a concise manner, focusing on increasing your understanding and retention of exam topics.
The book presents you with an organized test preparation routine through the use of proven series elements and techniques. Exam topic lists make referencing easy. Chapter-ending Exam Preparation Tasks help you drill on key concepts you must know thoroughly. Review questions help you assess your knowledge, and a final preparation chapter guides you through tools and resources to help you craft your final study plan.
The companion website contains the powerful Pearson Test Prep practice test software engine, complete with hundreds of exam-realistic questions. The assessment engine offers you a wealth of customization options and reporting features, laying out a complete assessment of your knowledge to help you focus your study where it is needed most.
Well regarded for its level of detail, assessment features, and challenging review questions and exercises, this CISSP study guide helps you master the concepts and techniques that will allow you to succeed on the exam the first time.
This study guide helps you master all the topics on the CISSP exam, including
- Security and Risk Management
- Asset Security
- Security Architecture and Engineering
- Communication and Network Security
- Identity and Access Management (IAM)
- Security Assessment and Testing
- Security Operations
- Software Development Security
Cover Page Title Page Copyright Page Pearson’s Commitment to Diversity, Equity, and Inclusion Contents at a Glance Table of Contents About the Authors Dedications Acknowledgments About the Technical Reviewers We Want to Hear from You! Reader Services Introduction The Goals of the CISSP Certification The Value of the CISSP Certification The Common Body of Knowledge Steps to Becoming a CISSP Facts About the CISSP Exam About the CISSP Cert Guide, Fourth Edition Companion Website Pearson Test Prep Practice Test Software Chapter 1. Security and Risk Management Foundation Topics Security Terms Security Governance Principles Compliance Legal and Regulatory Issues Investigation Types Professional Ethics Security Documentation Business Continuity Personnel Security Policies and Procedures Risk Management Concepts Geographical Threats Threat Modeling Security Risks in the Supply Chain Security Education, Training, and Awareness Exam Preparation Tasks Review All Key Topics Complete the Tables and Lists from Memory Define Key Terms Answer Review Questions Answers and Explanations Chapter 2. Asset Security Foundation Topics Asset Security Concepts Identify and Classify Information and Assets Information and Asset Handling Requirements Provision Resources Securely Data Lifecycle Asset Retention Data Security Controls Exam Preparation Tasks Review All Key Topics Define Key Terms Answer Review Questions Answers and Explanations Chapter 3. Security Architecture and Engineering Foundation Topics Engineering Processes Using Secure Design Principles Security Model Concepts System Security Evaluation Models Certification and Accreditation Control Selection Based on Systems Security Requirements Security Capabilities of Information Systems Security Architecture Maintenance Vulnerabilities of Security Architectures, Designs, and Solution Elements Vulnerabilities in Web-Based Systems Vulnerabilities in Mobile Systems Vulnerabilities in Embedded Systems Cryptographic Solutions Cryptographic Types Symmetric Algorithms Asymmetric Algorithms Public Key Infrastructure and Digital Certificates Key Management Practices Message Integrity Digital Signatures and Non-repudiation Applied Cryptography Cryptanalytic Attacks Digital Rights Management Site and Facility Design Site and Facility Security Controls Exam Preparation Tasks Complete the Tables and Lists from Memory Answer Review Questions Answers and Explanations Chapter 4. Communication and Network Security Foundation Topics Secure Network Design Principles IP Networking Protocols and Services Converged Protocols Wireless Networks Communications Cryptography Secure Network Components Secure Communication Channels Network Attacks Exam Preparation Tasks Review All Key Topics Define Key Terms Answer Review Questions Answers and Explanations Chapter 5. Identity and Access Management (IAM) Foundation Topics Access Control Process Physical and Logical Access to Assets Identification and Authentication Concepts Identification and Authentication Implementation Identity as a Service (IDaaS) Implementation Third-Party Identity Services Integration Authorization Mechanisms Provisioning Lifecycle Access Control Threats Prevent or Mitigate Access Control Threats Exam Preparation Tasks Review All Key Topics Define Key Terms Answer Review Questions Answers and Explanations Chapter 6. Security Assessment and Testing Foundation Topics Design and Validate Assessment and Testing Strategies Conduct Security Control Testing Collect Security Process Data Analyze Test Outputs and Generate a Report Conduct or Facilitate Security Audits Exam Preparation Tasks Review All Key Topics Define Key Terms Answer Review Questions Answers and Explanations Chapter 7. Security Operations Foundation Topics Investigations Logging and Monitoring Activities Configuration and Change Management Security Operations Concepts Resource Protection Incident Management Detective and Preventive Measures Patch and Vulnerability Management Recovery Strategies Disaster Recovery Testing Disaster Recovery Plans Business Continuity Planning and Exercises Physical Security Personnel Safety and Security Exam Preparation Tasks Review All Key Topics Define Key Terms Answer Review Questions Answers and Explanations Chapter 8. Software Development Security Foundation Topics Software Development Concepts Security in the System and Software Development Life Cycle Security Controls in Development Assess Software Security Effectiveness Security Impact of Acquired Software Secure Coding Guidelines and Standards Exam Preparation Tasks Review All Key Topics Define Key Terms Answer Review Questions Answers and Explanations Chapter 9. Final Preparation Tools for Final Preparation Suggested Plan for Final Review/Study Summary Appendix A. Memory Tables Appendix B. Memory Tables Answer Key Glossary
1. Disable the AdBlock plugin. Otherwise, you may not get any links.
2. Solve the CAPTCHA.
3. Click download link.
4. Lead to download server to download.