Certified Information Systems Security Professional (CISSP) Exam Guide: Become a certified CISSP professional with practical exam-oriented knowledge o
Jordan, Ted, Daza, Ric, Hettema, Hinne
- 出版商: Packt Publishing
- 出版日期: 2024-09-20
- 售價: $2,010
- 貴賓價: 9.5 折 $1,910
- 語言: 英文
- 頁數: 526
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1800567618
- ISBN-13: 9781800567610
-
相關分類:
Cisco、資訊安全
海外代購書籍(需單獨結帳)
相關主題
商品描述
Master the skills to safeguard information assets in a dynamic digital landscape and achieve your CISSP certification
Purchase of this book unlocks access to online exam resources such as practice questions, flashcards, exam tips, and the eBook PDF
Key Features:
- Explore up-to-date content meticulously aligned with the latest CISSP exam objectives
- Understand the value of governance, risk management, and compliance
- Assess your exam readiness with practice questions that match exam-level difficulty
Book Description:
The (ISC)2 CISSP exam evaluates the competencies required to secure organizations, corporations, military sites, and government entities. The comprehensive CISSP certification guide offers up-to-date coverage of the latest exam syllabus, ensuring you can approach the exam with confidence, fully equipped to succeed.
Complete with interactive flashcards, invaluable exam tips, and self-assessment questions, this book helps you build and test your knowledge of all eight CISSP domains. Detailed answers and explanations for all questions will enable you to gauge your current skill level and strengthen weak areas.
This guide systematically takes you through all the information you need to not only pass the CISSP exam, but also excel in your role as a security professional. Starting with the big picture of what it takes to secure the organization through asset and risk management, it delves into the specifics of securing networks and identities. Later chapters address critical aspects of vendor security, physical security, and software security.
By the end of this book, you'll have mastered everything you need to pass the latest CISSP certification exam and have this valuable desktop reference tool for ongoing security needs.
What You Will Learn:
- Get to grips with network communications and routing to secure them best
- Understand the difference between encryption and hashing
- Know how and where certificates and digital signatures are used
- Study detailed incident and change management procedures
- Manage user identities and authentication principles tested in the exam
- Familiarize yourself with the CISSP security models covered in the exam
- Discover key personnel and travel policies to keep your staff secure
- Discover how to develop secure software from the start
Who this book is for:
This book is for professionals seeking to obtain the ISC2 CISSP certification. You should have experience in at least two of the following areas: GRC, change management, network administration, systems administration, physical security, database management, or software development. Additionally, a solid understanding of network administration, systems administration, and change management is essential.
Table of Contents
- Ethics, Security Concepts, and Governance Principles
- Compliance, Regulation, and Investigations
- Security Policies and Business Continuity
- Risk Management, Threat Modeling, SCRM, and SETA
- Asset and Privacy Protection
- Information and Asset Handling
- Secure Design Principles and Controls
- Architecture Vulnerabilities and Cryptography
- Facilities and Physical Security
- Network Architecture Security
- Securing Communication Channels
- Identity, Access Management, and Federation
- Identity Management Implementation
- Designing and Conducting Security Assessments
- Designing and Conducting Security Testing
- Planning for Security Operations
- Security Operations
- Disaster Recovery
- Business Continuity, Personnel, and Physical Security
(N.B. Please use the Read Sample option to see further chapters)
商品描述(中文翻譯)
掌握在動態數位環境中保護資訊資產的技能,並獲得您的CISSP認證
購買本書可解鎖在線考試資源,如練習題、閃卡、考試技巧和電子書PDF
主要特色:
- 探索與最新CISSP考試目標精心對齊的最新內容
- 理解治理、風險管理和合規性的價值
- 通過與考試難度相匹配的練習題評估您的考試準備情況
書籍描述:
(ISC)² CISSP考試評估保護組織、公司、軍事基地和政府機構所需的能力。這本全面的CISSP認證指南提供最新考試大綱的更新內容,確保您能夠自信地參加考試,充分準備以取得成功。
本書配有互動閃卡、寶貴的考試技巧和自我評估問題,幫助您建立和測試對所有八個CISSP領域的知識。所有問題的詳細答案和解釋將使您能夠評估當前的技能水平並加強薄弱的領域。
本指南系統性地帶您了解通過CISSP考試所需的所有資訊,並在作為安全專業人員的角色中脫穎而出。從保護組織所需的資產和風險管理的全貌開始,深入探討保護網路和身份的具體細節。後面的章節則涉及供應商安全、物理安全和軟體安全的關鍵方面。
在本書結束時,您將掌握通過最新CISSP認證考試所需的一切,並擁有這個寶貴的桌面參考工具以應對持續的安全需求。
您將學到的內容:
- 理解網路通訊和路由,以最佳方式保護它們
- 理解加密和雜湊之間的區別
- 知道證書和數位簽名的使用方式和地點
- 研究詳細的事件和變更管理程序
- 管理考試中測試的用戶身份和身份驗證原則
- 熟悉考試中涵蓋的CISSP安全模型
- 發現關鍵人員和旅行政策以保護您的員工
- 探索如何從一開始就開發安全的軟體
本書適合對象:
本書適合尋求獲得ISC2 CISSP認證的專業人士。您應該在以下至少兩個領域有經驗:GRC、變更管理、網路管理、系統管理、物理安全、資料庫管理或軟體開發。此外,對網路管理、系統管理和變更管理的扎實理解是必須的。
目錄:
- 倫理、安全概念和治理原則
- 合規性、法規和調查
- 安全政策和業務持續性
- 風險管理、威脅建模、SCRM和SETA
- 資產和隱私保護
- 資訊和資產處理
- 安全設計原則和控制
- 架構漏洞和密碼學
- 設施和物理安全
- 網路架構安全
- 保護通訊通道
- 身份、訪問管理和聯邦
- 身份管理實施
- 設計和進行安全評估
- 設計和進行安全測試
- 安全操作規劃
- 安全操作
- 災難恢復
- 業務持續性、人員和物理安全
(注意:請使用閱讀範本選項查看後續章節)