finelybook
9781785884498
CISSP in 21 Days Second Edition
by 作者: M. L. Srinivasan
ISBN-10 书号: 1785884492
ISBN-13 书号: 9781785884498
Edition 版本: 2nd Revised edition
Publisher Finelybook 出版日期: 2016-06-30
Pages: 402
Boost your confidence and get the competitive edge you need to crack the exam in just 21 days!
About This Book
Day-by-day plan to study and assimilate core concepts from CISSP CBK
Revise and take a mock test at the end of every four chapters
A systematic study and revision of myriad concepts to help you crack the CISSP examination
Who this book is for
If you are a Networking professional aspiring to take the CISSP examination and obtain the coveted CISSP certification (considered to be the Gold Standard in Information Security personal certification),then this is the book you want.
This book assumes that you already have sufficient knowledge in all 10 domains of the CISSP CBK by way of work experience and knowledge gained from other study books.
What you will learn
Review Exam Cram and Practice review questions to reinforce the required concepts
Follow the day–by-day plan to revise important concepts a month before the CISSP® exam
Boost your time management for the exam by attempting the mock question paper
Develop a structured study plan for all 10 CISSP® domains
Build your understanding of myriad concepts in the Information Security domain
Practice the full-blown mock test to evaluate your knowledge and exam preparation
In Detail
Certified Information Systems Security Professional (CISSP) is an internationally recognized and coveted qualification. Success in this respected exam opens the door to your dream job as a security expert with an eye-catching salary. But passing the final exam is challenging. Every year a lot of candidates do not prepare sufficiently for the examination,and fail at the final stage. This happens when they cover everything but do not revise properly and hence lack confidence.
This simple yet informative book will take you through the final weeks before the exam with a day-by-day plan covering all of the exam topics. It will build your confidence and enable you to crack the Gold Standard exam,knowing that you have done all you can to prepare for the big day.
This book provides concise explanations of important concepts in all 10 domains of the CISSP Common Body of Knowledge (CBK). Starting with Confidentiality,Integrity,and Availability,you will focus on classifying information and supporting assets. You will understand data handling requirements for sensitive information before gradually moving on to using secure design principles while implementing and managing engineering processes. You will understand the application of cryptography in communication security and prevent or mitigate strategies for network attacks. You will also learn security control requirements and how to assess their effectiveness. Finally,you will explore advanced topics such as automated and manual test result analysis and reporting methods.
A complete mock test is included at the end to evaluate whether you're ready for the exam. This book is not a replacement for full study guides; instead,it builds on and reemphasizes concepts learned from them.
Contents
Chapter 1. Day 1 – Security and Risk Management - Security,Compliance,and Policies
Chapter 2. Day 2 – Security and Risk Management - Risk Management,Business Continuity,and Security Education
Chapter 3. Day 3 – Asset Security - Information and Asset Classification
Chapter 4. Day 4 – Asset Security - Data Security Controls and Handling
Chapter 5. Day 5 – Exam Cram and Practice Questions
Chapter 6. Day 6 – Security Engineering - Security Design,Practices,Models,and Vulnerability Mitigation
Chapter 7. Day 7 – Security Engineering - Cryptography
Chapter 8. Day 8 – Communication and Network Security - Network Security
Chapter 9. Day 9 – Communication and Network Security - Communication Security
Chapter 10. Day 10 – Exam Cram and Practice Questions
Chapter 11. Day 11 – Identity and Access Management - Identity Management
Chapter 12. Day 12 – Identity and Access Management - Access Management,Provisioning,and Attacks
Chapter 13. Day 13 – Security Assessment and Testing - Designing,Performing Security Assessment,and Tests
Chapter 14. Day 14 – Security Assessment and Testing - Controlling,Analyzing,Auditing,and Reporting
Chapter 15. Day 15 – Exam Cram and Practice Questions
Chapter 16. Day 16 – Security Operations - Foundational Concepts
Chapter 17. Day 17 – Security Operations - Incident Management and Disaster Recovery
Chapter 18. Day 18 – Software Development Security - Security in Software Development Life Cycle
Chapter 19. Day 19 – Software Development Security - Assessing effectiveness of Software Security
Chapter 20. Day 20 – Exam Cram and Practice Questions
Chapter 21. Day 21 – Exam Cram and Mock Test
提高您的信心,并获得您需要的竞争优势,在短短21天内解决考试!
关于这本书
从CISSP CBK学习和吸收核心概念的日常计划
在每四章结尾处修改并进行模拟测试
系统地研究和修订无数概念,帮助您解决CISSP考试
这本书是谁
如果您是有意参加CISSP考试并获得令人垂涎的CISSP认证(被视为“信息安全金牌”个人认证)的网络专业人士,那么这是您想要的书。
本书假设您已经通过从其他学习书获得的工作经验和知识,在CISSP CBK的所有10个领域中拥有足够的知识。
你会学到什么
审查考试和实践审查问题,以加强所需的概念
按照日常计划,在CISSP®考试前一个月修改重要概念
通过尝试模拟问题文件,提高考试的时间管理
为所有10个CISSP®域制定结构化学习计划
建立您对信息安全领域无数概念的理解
练习完整的模拟测试,以评估您的知识和考试准备
详细
认证信息系统安全专业人员(CISSP)是国际公认的和令人垂涎的资格。在这个受人尊敬的考试中的成功打开了你梦寐以求的工作的大门,作为具有抢眼薪水的安全专家。但通过期末考试是有挑战性的。每年有很多候选人不能够充分准备考试,而且在最后阶段失败。这种情况发生在他们覆盖一切,但不能正确修改,因此缺乏信心。
这本简单而翔实的书将带您参加考试前最后几周,并提供涵盖所有考试题目的日常计划。它将建立您的信心,并使您能够破解黄金标准考试,知道您已经尽全力为大一天做准备。
本书简要解释了CISSP共同知识体系(CBK)的所有10个领域的重要概念。从保密性,完整性和可用性开始,您将重点分类信息和支持资产。您将了解敏感信息的数据处理要求,然后在实施和管理工程流程的同时逐步实现安全设计原则。您将了解密码学在通信安全中的应用,并预防或减轻网络攻击的策略。您还将学习安全控制要求以及如何评估其有效性。最后,您将探索诸如自动化和手动测试结果分析和报告方法等高级主题。
最后包括一个完整的模拟测试,以评估您是否准备好考试。这本书不是替代完整的学习指南;相反,它建立并重新强调从他们学到的概念。
目录
第1章第1天 - 安全和风险管理 - 安全,合规和政策
第2章 - 安全和风险管理 - 风险管理,业务连续性和安全教育
第3章 - 资产安全 - 信息和资产分类
第4章 - 资产安全 - 数据安全控制和处理
第5章 - 考试和练习题
第6章 - 安全工程 - 安全设计,实践,模型和弱点缓解
第7章 - 安全工程 - 密码学
第8章第8天 - 通信和网络安全 - 网络安全
第9章第9天 - 通信和网络安全 - 通信安全
第10章第10课 - 考试和练习题
第11章 - 身份和访问管理 - 身份管理
第12章第12天 - 身份和访问管理 - 访问管理,配置和攻击
第13章第13天 - 安全评估和测试 - 设计,执行安全评估和测试
第14章第14天 - 安全评估和测试 - 控制,分析,审计和报告
第15章第15天 - 考试和实践问题
第16章第16天 - 安全操作 - 基础概念
第17章第17天 - 安全操作 - 事件管理和灾难恢复
第18章 - 软件开发安全 - 软件开发生命周期安全
第19章第19天 - 软件开发安全 - 评估软件安全性的有效性
第20章第20天 - 考试和实践问题
第21章第21天 - 考试和模拟考试
