Certified Information Systems Security Professional Security Domains

Question 1

How many of these domains are there?

Answer 1

8

Question 2

What is Security and Risk Management domain about?

Answer 2

Defining security goals and objectives, risk mitigation, compliance, buiness continuity and the law

Question 3

What is Asset Security domain about?

Answer 3

Securing digital and physical assets. Also related to the storage, maintenance, retention and destruction of data

Question 4

What is Security Architecture and Engineering domain about?

Answer 4

Optimization of data security by ensuring effective tools, systems and processes are in place

Question 5

What is the Communions and Network Security domain?

Answer 5

Management and securing of physical and wireless comms

Question 6

What is the Identity and Access Management domain about?

Answer 6

Securing data by ensuring users follow established policies and procedures to control & manage physical assets, and logical assets

Question 7

What is Security Assessment and Testing domain about?

Answer 7

Conducting of security control testing, collection, and analyzing of data, conducting security audits to monitor for risks, threats and vulnerabilities

Question 8

Security Operations domain is about?

Answer 8

Conducting investigations and implementing preventive measures

Question 9

Software Development Security domain is about?

Answer 9

Using secure coding practices which are a set of guidelines used to create secure applications and services