CISSP Essentials training: Domain 10, Operations Security

About CISSP Essentials Discover what you need to know to ace the CISSP exam with this series of CISSP certification training lessons. Each lesson, which contains a video, domain spotlight article and a quiz with sample CISSP exam questions, corresponds to a specific domain in the CISSP exam's "Common Body of Knowledge" -- the essential elements each CISSP-certified practitioner must know.

In this CISSP Essentials Security School lesson, Domain 10, Operations Security, expert CISSP exam trainer Shon Harris details the process of understanding enterprise security operations from a competitor's/enemy's/hacker's viewpoint and then developing and applying countermeasures to mitigate identified threats. A company cannot provide any level of protection for itself unless it is providing the necessary operation security methodologies, technologies and procedures.

Before viewing the Domain 10, Operations Security video below, it's recommended that students first read the Domain 10 spotlight article, which provides an overview of the concepts presented in the video, including operations responsibilities, operations personnel, configuration management, media access protection, system recovery, facsimile security, vulnerability and penetration testing and, finally, attack types.

After watching the video, test your comprehension of this material with our Domain 10, Operations Security quiz. Upon completion, return to the CISSP Essentials Security School table of contents to select your next lesson.

About Shon Harris:
Shon Harris is a CISSP, MCSE and President of Logical Security, a firm specializing in security educational and training tools. Logical Security offers curriculum, virtual labs, instructor slides and tools for lease by training companies, security companies, military organizations, government sectors and corporations.

Shon is also a security consultant, an engineer in the Air Force's Information Warfare unit, an entrepreneur and an author. She has authored two best selling CISSP books, including CISSP All-in-One Exam Guide, and was a contributing author to the book Hacker's Challenge. Shon is currently finishing her newest book, Gray Hat Hacking: The Ethical Hacker's Handbook.

CISSP® is a registered certification mark of the International Information Systems Security Certification Consortium, Inc., also known as ISC(2).

BROWSE BY TAG CISSP Certification,   Information Security Careers, Training and Certifications,   Application and Platform Security,   Enterprise Vulnerability Management,   Vulnerability Risk Assessment,   Configuration Management Planning,   VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT CISSP Certification Some IT security certifications are overvalued, analyst says Q2 2009 data shows IT security certification pay still climbing Why doesn't the CISSP cover information assurance and DIACAP? IT security skills and certification pay Despite recession, pay climbs for top IT security certifications Information security book excerpts and reviews Security skills pay increases despite economic downturn How do I get CPE credits? Finding a security management job after an economic downturn What is the GISP certification and how does it compare to the CISSP certification? CISSP Certification Research Vulnerability Risk Assessment Screencast: How to launch an OpenVAS scan Trusteer CEO criticizes Adobe, touts better patch deployments Patch management study shows IT taking significant risks Vulnerability mitigation study shows need for faster patching Microsoft to issue security report card, new tool at Black Hat Newest malware threats Are Web application penetration tests still important? PCI compliance requirement 6: Systems and applications Cybercrime and threat management McAfee to acquire Solidcore Systems for whitelisting Vulnerability Risk Assessment Research Configuration Management Planning Integrated change management reduces security risks EMC adds configuration management with Configuresoft acquisition McAfee to acquire Solidcore Systems for whitelisting Product Review: Shavlik's NetChk Compliance Security services: Fiberlink's MaaS360 Mobility Platform 5 Steps for Developing Strong Change Management Program Best Practices Misconfiguration issues could have contributed to Hannaford breach Misconfigured networks create huge security risks Private sector should learn from government insecurity Compliance drives security configuration management Configuration Management Planning Research

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary Certified Information Systems Security Professional  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary