Module 1 - 02-1 Flashcards
More about the CISSP security domains
Define Security posture
An organization’s ability to manage its defense of critical assets and data and react to change
What does CISSP stand for?
Certified Information Systems Security Professional (CISSP)
What are the eight CISSP Security Domains (8)?
- Security and Risk Management
- Asset Security
- Security Architecture and Engineering
- Communication and Network Security
- Identity and Access Management (IAM)
- Security Assessment and Testing
- Security Operations
- Software Development Security
What is the first (1st) CISSP Security Domain?
- Security and Risk Management
What is the second (2nd) CISSP Security Domain?
- Asset Security
What is the third (3rd) CISSP Security Domain?
- Security Architecture and Engineering
What is the fourth (4th) CISSP Security Domain?
- Communication and Network Security
What is the fifth (5th) CISSP Security Domain?
- Identity and Access Management (IAM)
What is the sixth (6th) CISSP Security Domain?
- Security Assessment and Testing
What is the seventh (7th) CISSP Security Domain?
- Security Operations
What is the eight (8th) CISSP Security Domain?
- Software Development Security
What areas does the first (1st) Security Domain, Security and Risk Management, focus on (5)?
- Defining Security Goals and Objectives,
- Risk Mitigation,
- Compliance,
- Business Continuity,
- Legal Regulations
(Professional and Organizational Ethics)
Define how Security Goals and Objectives pertains to the Security and Risk Management Domain
Organizations can reduce risks to critical assets and data like PII, or personally identifiable information
Define how Risk Mitigation pertains to the Security and Risk Management Domain
Having the right procedures and rules in place to quickly reduce the impact of a risk like a breach
Define how Compliance pertains to the Security and Risk Management Domain
The primary method used to develop an organization’s internal security policies, regulatory requirements, and independent standards
Define how Business Continuity pertains to the Security and Risk Management Domain
An organization’s ability to maintain their everyday productivity by establishing risk disaster recovery plans
Define how Legal Regulations pertains to the Security and Risk Management Domain
Following rules and expectations for ethical behavior to minimize negligence, abuse, or fraud
Define Risk Mitigation
The process of having the right procedures and rules in place to quickly reduce the impact of a risk like a breach
Define Business Continuity
An organization’s ability to maintain their everyday productivity by establishing risk disaster recovery plans
What does InfoSec stand for?
Information Security
Which CISSP Security Domain does InfoSec relate to?
CISSP Security and Risk Management Security Domain
What does InfoSec refer to?
A set of processes established to secure information
What are some InfoSec design processes (5)?
- Incident response
- Vulnerability management
- Application security
- Cloud security
- Infrastructure security
What area does the second (2nd) Security Domain, Asset Security, focus on?
Securing Digital and Physical Assets.
It involves managing the cybersecurity processes of organizational assets, including the storage, maintenance, retention, and destruction of physical and virtual data
What can an organization do to determine the level of risk associated with an asset (3)?
- Conducting a security impact analysis
- Establishing a recovery plan
- Managing data exposure
What area does the third (3rd) Security Domain, Security Architecture and Engineering, focus on?
Optimizing data security by ensuring effective tools, systems, and processes are in place to protect an organization’s assets and data
What is one of the core concepts of Secure Design Architecture?
Shared Responsibility
Define Shared Responsibility
All individuals within an organization take an active role in lowering risk and maintaining both physical and virtual security
What additional design principles that relate to the Security Architecture and Engineering Security Domain (8)?
- Threat modeling
- Least privilege
- Defense in depth
- Fail securely
- Separation of duties
- Keep it simple
- Zero trust
- Trust but verify
What area does the fourth (4th) Security Domain, Communication and Setwork Security, focus on?
Managing and securing physical networks and wireless communications
What area does the fifth (5th) Security Domain, Identity and Access Management (IAM), focus on?
Access and authorization to keep data secure by making sure users follow established policies to control and manage assets.
Basically, the goal of IAM is to reduce the overall risk to systems and data.
What does IAM stand for?
Identity and Access Management (IAM)
What are the four main components to Identity and Access Management (IAM)?
i. Identification
ii. Authentication
iii. Authorization
iv. Accountability
Define how Identification pertains to the Identity and Access Management (IAM) Domain
A user verifies who they are by providing a user name, an access card, or biometric data such as a fingerprint
Define how Authentication pertains to the Identity and Access Management (IAM) Domain
The verification process to prove a person’s identity, such as entering a password or PIN
Define how Authorization pertains to the Identity and Access Management (IAM) Domain
Takes place after a user’s identity has been confirmed and relates to their level of access, which depends on the role in the organization
Define how Accountability pertains to the Identity and Access Management (IAM) Domain
Monitoring and recording user actions, like login attempts, to prove systems and data are used properly
What principle does the Identity and Access Management (IAM) Domain use?
Least Privilege
What is the concept of Least Privilege?
The concept of granting only the minimal access and authorization required to complete a task
What area does the sixth (6th) Security Domain, Security Assessment and Testing, focus on?
Conducting security control testing, collecting and analyzing data, and conducting security audits to monitor for risks, threats, and vulnerabilities
What is another name for Penetration Testers?
Pen Testers
What is the primary action of Pen Testers?
To find vulnerabilities that could be exploited by a threat actor
What area does the seventh (7th) Security Domain, Security Operations, focus on?
Conducting investigations and implementing preventative measures
What strategies, processes, and tools can be used to implement preventative measures for the Security Operations Domain (9)?
- Training and awareness
- Reporting and documentation
- Intrusion detection and prevention
- SIEM tools
- Log management
- Incident management
- Playbooks
- Post-breach forensics
- Reflecting on lessons learned
What area does the eight (8th) Security Domain, Software Development Security, focus on?
Using secure coding practices
(programming practices and guidelines to create secure applications and services)
Match each CISSP security domain to its area of focus:
Optimizing data security by using effective tools, systems, and processes
CISSP security domain:
- Security and risk management
- Asset security
- Security architecture and engineering
- Communication and network security
Security architecture and engineering
Match each CISSP security domain to its area of focus:
Security goals and objectives, risk mitigation, compliance, business continuity, and the law
CISSP security domain:
- Security and risk management
- Asset security
- Security architecture and engineering
- Communication and network security
Security and risk management
Match each CISSP security domain to its area of focus:
Managing and securing physical networks and wireless communications
CISSP security domain:
- Security and risk management
- Asset security
- Security architecture and engineering
- Communication and network security
Communication and network security
Match each CISSP security domain to its area of focus:
Securing assets; storage, maintenance, retention, and destruction of data
CISSP security domain:
- Security and risk management
- Asset security
- Security architecture and engineering
- Communication and network security
Asset security
Match each CISSP security domain to its area of focus:
Using secure coding practices to create secure applications and services
CISSP security domain:
- Identity and access management
- Security assessment and testing
- Security operations
- Software development security
Software development security
Match each CISSP security domain to its area of focus:
Conducting investigations and implementing preventative measures
CISSP security domain:
- Identity and access management
- Security assessment and testing
- Security operations
- Software development security
Security operations
Match each CISSP security domain to its area of focus:
Using access, authorization, and established policies to secure data and manage assets
CISSP security domain:
- Identity and access management
- Security assessment and testing
- Security operations
- Software development security
Identity and access management
Match each CISSP security domain to its area of focus:
Conducting security control testing and audits, collecting and analyzing data
CISSP security domain:
- Identity and access management
- Security assessment and testing
- Security operations
- Software development security
Security assessment and testing
The _____ domain is focused on access and authorization to keep data secure by making sure that users follow established policies to control and manage assets.
- communication and network security
- identity and access management
- security operations
- asset security
identity and access management
What is the focus of the security and risk management domain?
- Optimize data security by ensuring effective processes are in place
- Manage and secure wireless communications
- Secure physical networks and wireless communications
- Define security goals and objectives, risk mitigation, compliance, business continuity, and regulations
Define security goals and objectives, risk mitigation, compliance, business continuity, and regulations
In which domain would a security professional conduct security control testing; collect and analyze data; and perform security audits to monitor for risks, threats, and vulnerabilities?
- Communication and network engineering
- Security architecture and engineering
- Security assessment and testing
- Identity and access management
Security assessment and testing
The _____ domain concerns conducting investigations and implementing preventive measures.
- asset security
- software development security
- security operations
- communications and networking engineering
security operations
Define Asset Security
Focused on securing digital and physical assets. It’s also related to the storage, maintenance, retention, and destruction of data.
