9781118314173

This comprehensive book will guide readers through CISSP exam topics, including: Access Control Application Development Security Business Continuity and Disaster Recovery Planning Cryptography Information Security Governance and Risk Management Legal, Regulations, Investigations and Compliance Operations Security Physical (Environmental) Security Security Architecture and Design Telecommunications and Network Security This study guide will be complete with 100% coverage of the exam objectives, real world scenarios, hands-on exercises, and challenging review questions, both in the book as well via the exclusive Sybex Test Engine.

James Michael Stewart (Austin, TX), CISSP, is a security expert who has authored numerous publications, books, and courseware. Michael is also an instructor of CISSP and a variety of ethical hacking classes.

Mike Chapple (Miami, FL), Ph.D., CISSP, is an information security professional with the University of Notre Dame. In the past, he was chief information officer of Brand Institute and an information security researcher with the National Security Agency and the U.S. Air Force. His primary areas of expertise include network intrusion detection and access controls. Mike is a frequent contributor to TechTarget's SearchSecurity site, author of several information security titles including. Both Stewart and Chapple co-authored previous editions of the CISSP: Certified Information Systems Security Professional Study Guide.

Darril Gibson (Virginia Beach, VA), Security+, CISSP, ITIL v3, is the CEO of Security Consulting and Training, LLC. He regularly teaches, writes, and consults on a wide variety of security and technical topics. He's been a Microsoft Certified Trainer since August 1999 and holds several certifications. He has authored, coauthored, or contributed to 14 books on a wide range of topics including Security+ and other security topics.

Introduction xxxv

Assessment Test xliv

Chapter 1 Access Control 1

Chapter 2 Access Control Attacks and Monitoring 47

Chapter 3 Secure Network Architecture and Securing Network Components 87

Chapter 4 Secure Communications and Network Attacks 151

Chapter 5 Security Governance Concepts, Principles, and Policies 205

Chapter 6 Risk and Personnel Management 239

Chapter 7 Software Development Security 275

Chapter 8 Malicious Code and Application Attacks 327

Chapter 9 Cryptography and Symmetric Key Algorithms 361

Chapter 10 PKI and Cryptographic Applications 403

Chapter 11 Principles of Security Models, Design, and Capabilities 437

Chapter 12 Security Architecture Vulnerabilities, Threats, and Countermeasures 477

Chapter 13 Security Operations 531

Chapter 14 Incident Management 571

Chapter 15 Business Continuity Planning 617

Chapter 16 Disaster Recovery Planning 643

Chapter 17 Laws, Regulations, and Compliance 681

Chapter 18 Incidents and Ethics 713

Chapter 19 Physical Security Requirements 745

Appendix A Answers to Review Questions 781

Appendix B Answers to Written Labs 815

Appendix C About the Additional Study Tools 829

Index 833

What is included with this book?

The New copy of this book will include any supplemental materials advertised. Please check the title of the book to determine if it should include any access cards, study guides, lab manuals, CDs, etc.

The Used, Rental and eBook copies of this book are not guaranteed to include any supplemental materials. Typically, only the book itself is included. This is true even if the title states it includes any access cards, study guides, lab manuals, CDs, etc.

Amazon no longer offers textbook rentals. We do!

CISSP: Certified Information Systems Security Professional Study Guide

CISSP: Certified Information Systems Security Professional Study Guide

1118314174

Summary

Author Biography

Table of Contents

Supplemental Materials

Write a Review