Mod 2 CISSP Domains Flashcards
Security and Risk Management
Focuses on defining security goals and objectives, risk mitigation, compliance, business continuity, and law.
Asset Security
Focuses on securing digital and physical assets. It’s also related to the storage, maintenance, retention, and destruction of date.
Architecture and Engineering
Focuses on optimizing data security by ensuring effective tools, systems, and processes are in place.
Communication and Network Security
Focuses on managing and securing physical networks and wireless communications.
Identity and Management
Focuses on keeping data secure, by ensuring users follow established policies to control and manage physical assets.
Security Testing and Assessment
Focuses on conducting security control testing, collecting and analyzing data, and conducting security audits to monitor for risks, threats, and vulnerabilities.
Security Operations
Focuses on conducting investigations and implementing preventative measures.
Software Development Security
Focuses on using secure coding practices, which are a set of recommended guidelines that are used to create secure applications and services.
CISSP
Certified Information Systems Security Professional