ISC2 CISSP Certified Information Systems Security Professional Official Study Guide /
CISSP Study Guide - fully updated for the 2024 CISSP Body of Knowledge ISC2 Certified Information Systems Security Professional (CISSP) Official Study Guide, 10th Edition has been completely updated based on the latest 2024 CISSP Detailed Content Outline. This bestselling Sybex Study Guide covers 10...
Saved in:
Main Authors: | , , |
---|---|
Format: | Electronic eBook |
Language: | English |
Published: |
Hoboken, New Jersey :
John Wiley & Sons, Inc.,
[2024]
|
Edition: | 10th ed. |
Series: | Sybex Study Guide Series.
|
Subjects: | |
Online Access: | CONNECT |
MARC
LEADER | 00000cam a22000007a 4500 | ||
---|---|---|---|
001 | in00006549396 | ||
006 | m o d | ||
007 | cr cnu|||||||| | ||
008 | 240608s2024 nju o 000 0 eng d | ||
005 | 20240626131817.9 | ||
035 | |a 1WRLDSHRon1436831603 | ||
040 | |a EBLCP |b eng |c EBLCP |d ORMDA |d OCLCO | ||
020 | |a 9781394254705 | ||
020 | |a 1394254709 | ||
035 | |a (OCoLC)1436831603 | ||
037 | |a 9781394254699 |b O'Reilly Media | ||
050 | 4 | |a QA76.3 | |
082 | 0 | 4 | |a 005.8076 |2 23/eng/20240617 |
049 | |a TXMM | ||
100 | 1 | |a Chapple, Mike, |d 1975- |e author. | |
245 | 1 | 0 | |a ISC2 CISSP Certified Information Systems Security Professional Official Study Guide / |c Mike Chapple, James Michael Stewart, Darril Gibson. |
246 | 3 | 0 | |a CISSP certified information systems security professional official study guide |
250 | |a 10th ed. | ||
260 | |a Hoboken, New Jersey : |b John Wiley & Sons, Inc., |c [2024] | ||
300 | |a 1 online resource (1251 p.). | ||
336 | |a text |b txt |2 rdacontent | ||
337 | |a computer |b c |2 rdamedia | ||
338 | |a online resource |b cr |2 rdacarrier | ||
490 | 1 | |a Sybex Study Guide Series | |
500 | |a Description based upon print version of record. | ||
505 | 0 | |a Cover -- Title Page -- Copyright Page -- Acknowledgments -- About the Authors -- About the Technical Editors -- Contents at a Glance -- Contents -- Introduction -- Overview of the CISSP Exam -- The Elements of This Study Guide -- Interactive Online Learning Environment and Test Bank -- Study Guide Exam Objectives -- Objective Map -- How to Contact the Publisher -- Assessment Test -- Answers to Assessment Test -- Chapter 1 Security Governance Through Principles and Policies -- Security 101 -- Understand and Apply Security Concepts -- Confidentiality -- Integrity -- Availability | |
505 | 8 | |a DAD, Overprotection, Authenticity, Nonrepudiation, and AAA Services -- Protection Mechanisms -- Security Boundaries -- Evaluate and Apply Security Governance Principles -- Third-Party Governance -- Documentation Review -- Manage the Security Function -- Alignment of Security Function to Business Strategy, Goals, Mission, and Objectives -- Organizational Processes -- Organizational Roles and Responsibilities -- Security Control Frameworks -- Due Diligence and Due Care -- Security Policy, Standards, Procedures, and Guidelines -- Security Policies -- Security Standards, Baselines, and Guidelines | |
505 | 8 | |a Security Procedures -- Threat Modeling -- Identifying Threats -- Determining and Diagramming Potential Attacks -- Performing Reduction Analysis -- Prioritization and Response -- Supply Chain Risk Management -- Summary -- Study Essentials -- Written Lab -- Review Questions -- Chapter 2 Personnel Security and Risk Management Concepts -- Personnel Security Policies and Procedures -- Job Descriptions and Responsibilities -- Candidate Screening and Hiring -- Onboarding: Employment Agreements and Policy-Driven Requirements -- Employee Oversight -- Offboarding, Transfers, and Termination Processes | |
505 | 8 | |a Vendor, Consultant, and Contractor Agreements and Controls -- Understand and Apply Risk Management Concepts -- Risk Terminology and Concepts -- Asset Valuation -- Identify Threats and Vulnerabilities -- Risk Assessment/Analysis -- Risk Responses -- Cybersecurity Insurance -- Cost vs. Benefit of Security Controls -- Countermeasure Selection and Implementation -- Applicable Types of Controls -- Security Control Assessment -- Monitoring and Measurement -- Risk Reporting and Documentation -- Continuous Improvement -- Legacy Risk -- Risk Frameworks -- Social Engineering | |
505 | 8 | |a Social Engineering Principles -- Eliciting Information -- Prepending -- Phishing -- Spear Phishing -- Whaling -- Spam -- Shoulder Surfing -- Invoice Scams -- Hoax -- Impersonation and Masquerading -- Tailgating and Piggybacking -- Dumpster Diving -- Identity Fraud -- Typosquatting -- Influence Campaigns -- Establish and Maintain a Security Awareness, Education, and Training Program -- Awareness -- Training -- Education -- Improvements -- Effectiveness Evaluation -- Summary -- Study Essentials -- Written Lab -- Review Questions -- Chapter 3 Business Continuity Planning | |
500 | |a Planning for Business Continuity | ||
520 | |a CISSP Study Guide - fully updated for the 2024 CISSP Body of Knowledge ISC2 Certified Information Systems Security Professional (CISSP) Official Study Guide, 10th Edition has been completely updated based on the latest 2024 CISSP Detailed Content Outline. This bestselling Sybex Study Guide covers 100% of the CISSP objectives. You'll prepare smarter and faster with Sybex thanks to expert content, knowledge from our real-world experience, access to the Sybex online interactive learning environment, and much more. Reinforce what you've learned with key topic Study Essentials and chapter review questions. The book's co-authors bring decades of experience as cybersecurity practitioners and educators, integrating real-world expertise with the practical knowledge you'll need to successfully prove your CISSP mastery. Combined, they've taught cybersecurity concepts to millions of students through their books, video courses, and live training programs. Along with the book, you also get access to Sybex's superior online interactive learning environment that includes: Over 900 practice test questions with complete answer explanations. This includes all of the questions from the book plus four additional online-only practice exams, each with 125 unique questions. You can use the online-only practice exams as full exam simulations. Our questions will help you identify where you need to study more. More than 1000 Electronic Flashcards to reinforce your learning and give you last-minute test prep A searchable glossary in PDF to give you instant access to the key terms you need to know Audio Review. Author Mike Chapple reads the Study Essentials for each chapter providing you with more than 2 hours of up-to-date audio review for yet another way to reinforce your knowledge as you prepare. Coverage of all of the CISSP topics in the book means you'll be ready for: Security and Risk Management Asset Security Security Architecture and Engineering Communication and Network Security Identity and Access Management (IAM) Security Assessment and Testing Security Operations Software Development Security. | ||
500 | |a O'Reilly Online Learning Platform: Academic Edition (SAML SSO Access) |5 TMurS | ||
650 | 0 | |a Computer security |x Examinations |v Study guides. | |
650 | 0 | |a Computer networks |x Security measures |x Examinations |v Study guides. | |
650 | 0 | |a Electronic data processing personnel |x Certification. | |
650 | 0 | |a Telecommunications engineers |x Certification. | |
700 | 1 | |a Stewart, James Michael, |e author. | |
700 | 1 | |a Gibson, Darril, |e author. | |
730 | 0 | |a WORLDSHARE SUB RECORDS | |
776 | 0 | 8 | |i Print version: |a Chapple, Mike |t ISC2 CISSP Certified Information Systems Security Professional Official Study Guide |d Newark : John Wiley & Sons, Incorporated,c2024 |z 9781394254699 |
830 | 0 | |a Sybex Study Guide Series. | |
856 | 4 | 0 | |u https://go.oreilly.com/middle-tennessee-state-university/library/view/-/9781394254699/?ar |z CONNECT |3 O'Reilly |t 0 |
949 | |a ho0 | ||
994 | |a 92 |b TXM | ||
998 | |a wi |d z | ||
999 | f | f | |s 2d356ee3-e031-4385-890c-7b09b9cd31da |i 3f639035-69ec-423c-86ae-3a2354dacb40 |t 0 |
952 | f | f | |a Middle Tennessee State University |b Main |c James E. Walker Library |d Electronic Resources |t 0 |e QA76.3 |h Library of Congress classification |