Lesson/Domain 10: Training for CISSP certification

Log in and benefit from:

• Free access to the 45-minute lesson/domain webcast. (Registration required.)
• Free "Domain Spotlight" -- an insider's guide to each domain.
• Free sample exam prep questions for the domain. (Webcast registration required)

Lesson/Domain 10 -- Operations security
[Register here to view the Lesson/Domain 10 webcast and download the quiz.]

The operations department has responsibilities that pertain to everything that takes place to keep a network, computer system, applications and environment up and running in a secure and protected manner. After the network is setup is when operations kicks in, which includes the continual day-to-day maintenance of an environment. These activities are routine in nature and enable the environment, systems and applications to continue to run correctly and securely.

Operation security is the process of understanding these operations from a competitor's/enemy's/hacker's viewpoint and then developing and applying countermeasures to mitigate identified threats. A company cannot provide any level of protection for itself unless it is providing the necessary operation security methodologies, technologies and procedures. This domain covers:

• Operations personnel
• Configuration management
• Media access protection
• System recovery
• Facsimile security
• Vulnerability and penetration testing
• Attack types

> Read the full Domain Spotlight here.
> Register here to view this webcast and download the quiz on Lesson/Domain 10 -- Operations security.
> Go back to the SearchSecurity.com Security School's table of contents.

Additional resources

• Visit ISC(2) for more info on the CISSP certification.

About Shon Harris:

Shon Harris is a CISSP, MCSE and President of Logical Security, a firm specializing in security educational and training tools. Logical Security offers curriculum, virtual labs, instructor slides and tools for lease by training companies, security companies, military organizations, government sectors and corporations.

Shon is also a security consultant, an engineer in the Air Force's Information Warfare unit, an entrepreneur and an author. She has authored two best selling CISSP books, including CISSP All-in-One Exam Guide, and was a contributing author to the book Hacker's Challenge. Shon is currently finishing her newest book, Gray Hat Hacking: The Ethical Hacker's Handbook.

CISSP® is a registered certification mark of the International Information Systems Security Certification Consortium, Inc., also known as ISC(2).

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Vulnerability Assessment Security data lapses hamper researchers Database patch denial: How 'critical' are Oracle's CPUs? Is attack code valuable for vulnerabilities or just a publicity stunt? Will the features of Windows Vista SP1 encourage wider adoption of the OS? Is a Master Boot Record (MBR) rootkit completely invisible to the OS? How to install and configure Nessus Nessus: Vulnerability scanning in the enterprise Nessus 3 Tutorial Security Services: QualysGuard Security and Compliance Suite HP aims at IBM with application vulnerability scanning as service Vulnerability Assessment Research Configuration Management 5 Steps Toward Effective Change Management Misconfiguration issues could have contributed to Hannaford breach Misconfigured networks create huge security risks Will saving Microsoft patches and updates on a CD improve installation efforts? Private sector should learn from government insecurity Compliance drives security configuration management File format vulnerabilities: Protecting your applications Standalone patch management vendors under siege Change control helps IT deal with changing threats Subpar signatures embolden call for antivirus SLAs Configuration Management Research CISSP Certification CISOs Must Innovate to Enable Business Information security book excerpts and reviews SearchSecurity.com guide to information security certifications Guide to vendor-specific information security certifications The road from network administrator to information security professional Industry experience vs. security certification credentials How can I get my CISSP certification? Defining your security certification objective Rethinking certifications Do certifications have credibility? CISSP Certification Research

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary gray hat  (SearchSecurity.com) risk analysis  (SearchSecurity.com) vulnerability analysis  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary