ForewordIntroductionEditorsContributorsDomain1-AccessControlsDomain2-TelecommunicationsandNetworkSecurityDomain3-InformationSecurityGovernance&RiskManagementDomain4-SoftwareDevelopmentSecurityDomain5-CryptographyDomain6-SecurityArchitectureandDesignDomain7-SecurityOperationsDomain8-BusinessContiunityandDiasterRecoveryPlanningDomain9-Legal,Regulations,Investigations,andComplianceDomain10-Physical(Enviromental)SecurityAppendixA-AnswerstoReviewQuestionsForewordtoCISSPCBKStudyGuide-ThirdEditionWearelivinginanadvancedcyberera,witheveryaspectofourlives,frommedicalrecordstobanktransactions,nowbeingtransmittedonline.Theplethoraofdataandinformationfloodingcyberspaceisoverwhelmingandtheresimplyaren’tenoughqualifiedinformationsecurityprofessionalstoprotectitall.(ISC)2’smissionistosupportandprovidemembersandconstituentswithcredentials,resources,andleadershiptosecureinformationanddelivervaluetosociety.Thenot-for-profit,vendor-neutralorganizationwasfoundedbyagroupofpassionatevolunteersin1989whowantedtocreateaninformationsecurityindustrystandardforprofessionals.TheirinitialconceptforindustryexcellencecametofruitionwiththecreationoftheCertifiedInformationSystemsSecurityProfessional(CISSP®)credential.Itwasthefirsttechnology-relatedcredentialtobeaccreditedbytheInternationalOrganizationforStandardizations(ISO)ISO/IECStandard17024,aglobalbenchmarkforthecertificationofpersonnel.TheCISSPcontinuestoberecognizedastheindustry’sGoldStandard.Thetruedifferentiatoristheorganization’sstringentmembershiprequirements–passingtheexamination,possessingtherequirednumberofyearsofindepthexperienceinatleast2ofthedomains,beingendorsedbyanother(ISC)2memberingoodstanding,abidingbyaCodeofEthics,andmaintainingqualitycontinuingprofessionaleducation(CPE)credits.TheCISSPisnotonlyrecognizedthroughouttheindustry,it’salsohighlyregardedbygovernments,academia,humanresources,andbusinessentitiesaroundtheworld.Infact,theCISSPhasbecomeajobrequirementand/orcandidatedifferentiatorforinformationsecuritymanagementp...
