Address Personnel Safety and Security Concerns And finally we have reached the last part of this domain. In this section of this tutorial, we'll take a look personnel safety and security concerns to help you understand the different aspects of personnel safety. We discuss in this section that how to make sure that employees [...]
Implement and Manage Physical Security Physical security is yet another important aspect of the security professional’s responsibilities, and refers to securing physical assets such as land, buildings, computers, and other company property. We've discussed about important physical security concepts and technologies in detail before. If you need to refer to the contents of these [...]
Participate in Business Continuity Planning (BCP) and Exercises Business continuity focuses on a business operating with minimal or no downtime. At result, It also includes disaster recovery. We can say that business continuity is a strategy while disaster recovery is a tactic. In this section of this tutorial, we'll take a look at business [...]
Test Disaster Recovery Plans (DRP) In this section of this tutorial, we'll take a look at test disaster recovery plans (DRP) to help you understand the different aspects of test disaster recovery plans (DRP). Testing the disaster recovery plans is an effective way to assure the company is ready for a real disaster. There [...]
Implement Disaster Recovery (DR) Processes The general process of disaster recovery include: Responding to the disruption Activation of the recovery team Ongoing tactical communication Assessment of the damage Recovery of critical assets and processes Response The first thing to consider when an incident occurs is whether the disaster recovery process is needed. If the [...]
System Resilience, High Availability, QoS, and Fault Tolerance In this part of this tutorial, we'll take a look at System Resilience, High Availability, QoS, and Fault Tolerance to help you understand the different aspects of these concepts. As a CISSP candidate, it is important to be able to differentiate between these concepts: System Resilience: [...]
Implement Recovery Strategies Recovery strategies are important because they have a big impact on how long the organization will be down or have a degraded environment. Backup Storage Strategies In order to cover all reasonable scenarios, backup storage strategies often involve the following: 1- Secure offsite storage: Store backup media at a remote location. [...]
Understand and Participate in Change Management Processes In this part of this tutorial, we'll take a look at change management processes to help you understand the different aspects of change management processes. System, network, and application always require changes. A system that does not change will become less secure over time, as security updates [...]
Implement and Support Patch and Vulnerability Management Patch and vulnerability management is the process of regularly assessing, testing, installing and verifying fixes and patches for software bugs and flaws as they are discovered. Some of software bugs and flaws are security vulnerabilities that could permit an attacker to control a target system and at result [...]