Название:CISSP in 21 Days - Second Edition
Издательство: PACKT
Автор:M. L. Srinivasan
Год:2016
Количество страниц:403
Язык: English
Формат: True PDF
Размер:12 Mb
Boost your confidence and get the competitive edge you need to crack the exam in just 21 days!
Certified Information Systems Security Professional (CISSP) is an internationally recognized and coveted qualification. Success in this respected exam opens the door to your dream job as a security expert with an eye-catching salary. But passing the final exam is challenging. Every year a lot of candidates do not prepare sufficiently for the examination, and fail at the final stage. This happens when they cover everything but do not revise properly and hence lack confidence.
This simple yet informative book will take you through the final weeks before the exam with a day-by-day plan covering all of the exam topics. It will build your confidence and enable you to crack the Gold Standard exam, knowing that you have done all you can to prepare for the big day.
This book provides concise explanations of important concepts in all 10 domains of the CISSP Common Body of Knowledge (CBK). Starting with Confidentiality, Integrity, and Availability, you will focus on classifying information and supporting assets. You will understand data handling requirements for sensitive information before gradually moving on to using secure design principles while implementing and managing engineering processes. You will understand the application of cryptography in communication security and prevent or mitigate strategies for network attacks. You will also learn security control requirements and how to assess their effectiveness. Finally, you will explore advanced topics such as automated and manual test result analysis and reporting methods.
A complete mock test is included at the end to evaluate whether you're ready for the exam. This book is not a replacement for full study guides; instead, it builds on and reemphasizes concepts learned from them.
Table of Contents
1: Day 1 – Security and Risk Management - Security, Compliance, and Policies
2: Day 2 – Security and Risk Management - Risk Management, Business Continuity, and Security Education
3: Day 3 – Asset Security - Information and Asset Classification
4: Day 4 – Asset Security - Data Security Controls and Handling
5: Day 5 – Exam Cram and Practice Questions
6: Day 6 – Security Engineering - Security Design, Practices, Models, and Vulnerability Mitigation
7: Day 7 – Security Engineering - Cryptography
8: Day 8 – Communication and Network Security - Network Security
9: Day 9 – Communication and Network Security - Communication Security
10: Day 10 – Exam Cram and Practice Questions
11: Day 11 – Identity and Access Management - Identity Management
12: Day 12 – Identity and Access Management - Access Management, Provisioning, and Attacks
13: Day 13 – Security Assessment and Testing - Designing, Performing Security Assessment, and Tests
14: Day 14 – Security Assessment and Testing - Controlling, Analyzing, Auditing, and Reporting
15: Day 15 – Exam Cram and Practice Questions
16: Day 16 – Security Operations - Foundational Concepts
17: Day 17 – Security Operations - Incident Management and Disaster Recovery
18: Day 18 – Software Development Security - Security in Software Development Life Cycle
19: Day 19 – Software Development Security - Assessing effectiveness of Software Security
20: Day 20 – Exam Cram and Practice Questions
21: Day 21 – Exam Cram and Mock Test
What You Will Learn
Review Exam Cram and Practice review questions to reinforce the required concepts
Follow the day–by-day plan to revise important concepts a month before the CISSP® exam
Boost your time management for the exam by attempting the mock question paper
Develop a structured study plan for all 10 CISSP® domains
Build your understanding of myriad concepts in the Information Security domain
Practice the full-blown mock test to evaluate your knowledge and exam preparation
Authors
M. L. Srinivasan
M. L. Srinivasan is the founder and CEO of ChennaiNet, an India-based technology company focused on information technology and information security-related product development, services, and training. He's a Certified Information System Security Professional (CISSP) and Certified Information Security Management System Lead Auditor.
Popularly known as MLS, the author is an information technology and information security professional and has about 25 years' experience in various IT domains, such as software programming, hardware troubleshooting, networking technologies, systems administration, security administration, information security-related consulting, auditing and training.
He has been an avid trainer throughout his career and has developed many short-term and long-term training programs. He has been invited to speak at many international conferences and seminars on information security. Currently he is associated with NIIT Technologies (USA), and CA Technologies (USA) as a senior instructor covering various product-based training on CA identity manager, CA SiteMinder (Single Sign-On), CA ControlMinder (AccessControl), CA Federation Manager, and CA DataMinder products.
He was a specialist IT and IS auditor with Det Norske Veritas (DNV), India region. He has performed many quality and information security audits for hundreds of medium and large organizations in the past.
depositfiles.com
turbobit.net