SSCP Systems Security Certified Practitioner : study guide

SSCP Systems Security Certified Practitioner study guide

Fully updated Study Guide for the SSCP This guide prepares you for the SSCP, Systems Security Certified Practitioner certification examination by focusing on the Common Body of Knowledge (CBK) as determined by ISC2 in seven high level topics. This Sybex Study Guide covers 100% of all exam objective...

Descripción completa

Detalles Bibliográficos
Otros Autores: Murphy, George B., author (author)
Formato: Libro electrónico
Idioma:Inglés
Publicado: Indianapolis, Indiana : Sybex 2015.
Edición:1st ed
Materias:
Computer networks > Security measures > Examinations > Study guides.
Telecommunications engineers > Certification.
Ver en Biblioteca Universitat Ramon Llull:https://discovery.url.edu/permalink/34CSUC_URL/1im36ta/alma991009849121106719
Tabla de Contenidos:
  • Cover; Title Page; Copyright; Contents; Introduction; Assessment Test; Chapter 1 Information Security: The Systems Security Certified Practitioner Certification; About the (ISC)2 Organization; (ISC)2 History; Organizational Structure and Programs; Exams, Testing, and Certification; Certification Qualification: The SSCP Common Body of Knowledge; After Passing the Exam; Certification Maintenance; Types of IT Certifications?; About the Systems Security Certified Practitioner Certification; How Do I Use My SSCP Knowledge on the Job?; The SSCP Exam; Preparing for the Exam; Booking the Exam
  • Taking the ExamSummary; Exam Essentials; Chapter 2 Security Basics: A Foundation; The Development of Security Techniques; Understanding Security Terms and Concepts; The Problem (Opportunity) and the Solution; Evolution of Items; Security Foundation Concepts; CIA Triad; Primary Security Categories; Access Control; Nonrepudiation; Risk; Prudent Man, Due Diligence, and Due Care; User Security Management; Least Privilege; AAA; Mandatory Vacation; Separation of Duties; M of N Requirement; Two-Man Rule; Job Rotation; Geographic Access Control; Temporal Access Control, Time of Day Control; Privacy
  • TransparencyImplicit Deny; Personal Device (BYOD); Privilege Management, Privilege Life Cycle; Participating in Security Awareness Education; Types of Security Awareness Education Programs; Working with Human Resources and Stakeholders; Senior Executives; Customers, Vendors, and Extranet Users Security Awareness Programs; Summary; Exam Essentials; Written Lab; Review Questions; Chapter 3 Domain 1: Access Controls; What Are Controls?; What Should Be Protected?; Why Control Access?; Types of Access Controls; Physical Access Controls; Logical Access Controls; Administrative Access Controls
  • IdentificationAuthentication; Factors of Authentication; Single-Factor Authentication; Multifactor Authentication; Token-Based Access Controls; System-Level Access Controls; Discretionary Access Control (DAC); Nondiscretionary Access Control; Mandatory Access Control; Administering Mandatory Access Control; Trusted Systems; Mandatory Access Control Architecture Models; Account-Level Access Control; Session-Level Access Control; View-Based Access Control; Data-Level Access Control; Contextual- or Content-Based Access Control; Physical Data and Printed Media Access Control
  • Assurance of AccountabilityManage Internetwork Trust Architectures; Cloud-Based Security; Summary; Exam Essentials; Written Lab; Review Questions; Chapter 4 Domain 2: Security Operations and Administration; Security Administration Concepts and Principles; Security Equation; Security Policies and Practices; Data Management Policies; Data States; Information Life Cycle Management; Information Classification Policy; Endpoint Device Security; Endpoint Health Compliance; Endpoint Defense; Endpoint Device Policy; Security Education and Awareness Training; Employee Security Training Policy
  • Employee Security Training program

Ejemplares similares