CISSP Exam Cram, 5/e (Paperback)

Gregg, Michael

  • 出版商: Pearson IT Certifica
  • 出版日期: 2021-08-10
  • 售價: $1,850
  • 貴賓價: 9.5$1,758
  • 語言: 英文
  • 頁數: 800
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 0137419554
  • ISBN-13: 9780137419555
  • 相關分類: Cisco
  • 立即出貨(限量) (庫存=2)

買這商品的人也買了...

商品描述

CISSP Exam Cram, Fifth Edition is the perfect study guide to help you pass the latest update to the eight-domain version of the CISSP exam. It offers knowledge and practice questions for every exam topic, with new coverage of asset retention, secure provisioning, crypto attacks, machine learning tools, threat hunting, risk-based access control, zero trust, SAML, SOAR, CASB, securing microservices, containers, managed services, and more.

Covers the critical information you'll need to score higher on your CISSP exam!

 

  • Understand Security & Risk Management: ethics, security concepts, governance, compliance, law/regulation, policies/procedures, threat models, supply chain risk, awareness training, and more
  • Ensure Secure Assets: identify/classify information and assets; handling requirements, resource provisioning, data lifecycles, retention
  • Review Security Architecture & Engineering: secure processes and principles, security models and controls, system capabilities, vulnerability assessment/mitigation, crypto attacks/solutions, site/facility design and controls
  • Improve Communication & Network Security: secure network architectures, components, and channels
  • Strengthen Identity & Access Management (IAM): physical/logical access control, identification, authentication, federated identity services, authorization, identity/access provisioning
  • Enhance Security Assessment & Testing: design/validate assessment, test, and audit strategies; test controls; collect process data; evaluate and report test results; conduct or support audits
  • Manage Security Operations: investigations, logs, monitoring, resource protection, incident management, detection/prevention; configuration, patches, vulnerabilities, and change
  • management; DR/BC, physical and personnel security, and more

 

商品描述(中文翻譯)

《CISSP考試速成班》第五版是一本完美的學習指南,幫助您通過最新的八個領域版本的CISSP考試。它提供了每個考試主題的知識和練習題,並新增了資產保留、安全供應、加密攻擊、機器學習工具、威脅獵殺、基於風險的訪問控制、零信任、SAML、SOAR、CASB、保護微服務、容器、托管服務等內容。

涵蓋了您在CISSP考試中需要得分更高的關鍵信息!

理解安全與風險管理:倫理、安全概念、治理、合規性、法律/法規、政策/程序、威脅模型、供應鏈風險、意識培訓等。

確保安全資產:識別/分類信息和資產;處理要求、資源供應、數據生命周期、保留等。

審查安全架構與工程:安全流程和原則、安全模型和控制、系統能力、漏洞評估/緩解、加密攻擊/解決方案、站點/設施設計和控制等。

加強通信和網絡安全:安全網絡架構、組件和通道。

加強身份和訪問管理(IAM):物理/邏輯訪問控制、識別、身份驗證、聯合身份服務、授權、身份/訪問供應等。

增強安全評估和測試:設計/驗證評估、測試和審計策略;測試控制;收集流程數據;評估和報告測試結果;進行或支持審計等。

管理安全運營:調查、日誌、監控、資源保護、事件管理、檢測/預防;配置、補丁、漏洞和變更管理;災難恢復/業務持續性、物理和人員安全等。

作者簡介

Michael Gregg has more than 20 years of experience in information security and risk management. He holds two associate's degrees, a bachelor's degree, and a master's degree. Some of the certifications he holds include CISSP, SSCP, MCSE, CTT+, A+, N+, Security+, CASP, CCNA, GSEC, CEH, CHFI, CEI, CISA, CISM, and CGEIT.

In addition to his experience performing security management, audits, and assessments, Gregg has authored or coauthored more than 25 books, including Certified Ethical Hacker Exam Prep (Que), CISSP Exam Cram 2 (Que), and Security Administrator Street Smarts (Sybex). He has testified before the U.S. Congress, his articles have been published on IT websites, and he has been sourced as an industry expert for CBS, ABC, CNN, Fox News, and the New York Times. He has created more than 15 security-related courses and training classes for various companies and universities. Although leading, building, and managing security programs is where he spends the bulk of his time, contributing to the written body of IT security knowledge is how Michael believes he can give something back to the community that has given him so much.

作者簡介(中文翻譯)

Michael Gregg擁有超過20年的資訊安全和風險管理經驗。他擁有兩個副學士學位、一個學士學位和一個碩士學位。他持有的一些認證包括CISSP、SSCP、MCSE、CTT+、A+、N+、Security+、CASP、CCNA、GSEC、CEH、CHFI、CEI、CISA、CISM和CGEIT。

除了在安全管理、審計和評估方面的經驗外,Gregg還撰寫或合著了超過25本書籍,包括《Certified Ethical Hacker Exam Prep》(Que)、《CISSP Exam Cram 2》(Que)和《Security Administrator Street Smarts》(Sybex)。他曾在美國國會作證,他的文章曾在IT網站上發表,並且他被CBS、ABC、CNN、Fox News和《紐約時報》引用為行業專家。他為各種公司和大學創建了超過15個與安全相關的課程和培訓班。儘管他花大部分時間領導、建立和管理安全計劃,但Michael認為貢獻於IT安全知識的文獻是他回饋給給予他如此多的社區的方式。