Compliance Requirements Compliance Requirements is one of the aspects of CISSP training course. Following are some legal and legislative terms that are significant to the Information Security domain. 1- SPI: Sensitive Personal Information 2- PII: Personally Identifiable Information. According to NIST special publication 800-122, the Personally Identifiable Information (PII) is defined as: Any [...]
Organizational Roles & Responsibilities In an organization, the most important area for the management is the division of roles and responsibilities. On the other hand organization's structure, is the base for developing any organization. Structure of an organization is a chain of hierarchy, which divides the different roles and responsibilities among individuals associated with [...]
Security Principles of Governance Security Principles of governance is one of the most important aspects of CISSP training course. 1- Alignment of Security Function to Business Mission : Mission statement should be easy to understand and should explain that what the organization is? What it does? Why it exists? What methods does use [...]
Security and Risk Management Domain This domain represents 15 percent of the CISSP certification exam. This section has covers about the following: Ownership Security Policies and Procedures Business Continuity Planning Risk Management Security Education Training Awareness Information or data is an important asset of an organization. This page and next pages covers the [...]
Information Security Triad Information Security is based on three main factors (Also Called Information Security Triad). Confidentiality, Integrity and Availability, these are abbreviated as CIA. In this section of this tutorial, we'll take a look at Information security triad to help you understand the aspects of Information security triad. Confidentiality: Assures that data is secured [...]
CISSP (Certified Information Systems Security Professional) is a course and exam offered by ISC2. There are a collection of topics that are called CISSP CBK (Common Body of Knowledge). There are 8 domains in CISSP exam: Security and Risk Management Asset Security Security Architecture and Engineering Communication and Network Security Identity and Access Management [...]