CISSP Essentials training: Domain 10, Operations Security

About CISSP Essentials Discover what you need to know to ace the CISSP exam with this series of CISSP certification training lessons. Each lesson, which contains a video, domain spotlight article and a quiz with sample CISSP exam questions, corresponds to a specific domain in the CISSP exam's "Common Body of Knowledge" -- the essential elements each CISSP-certified practitioner must know.

In this CISSP Essentials Security School lesson, Domain 10, Operations Security, expert CISSP exam trainer Shon Harris details the process of understanding enterprise security operations from a competitor's/enemy's/hacker's viewpoint and then developing and applying countermeasures to mitigate identified threats. A company cannot provide any level of protection for itself unless it is providing the necessary operation security methodologies, technologies and procedures.

Before viewing the Domain 10, Operations Security video below, it's recommended that students first read the Domain 10 spotlight article, which provides an overview of the concepts presented in the video, including operations responsibilities, operations personnel, configuration management, media access protection, system recovery, facsimile security, vulnerability and penetration testing and, finally, attack types.

After watching the video, test your comprehension of this material with our Domain 10, Operations Security quiz. Upon completion, return to the CISSP Essentials Security School table of contents to select your next lesson.

About Shon Harris:
Shon Harris is a CISSP, MCSE and President of Logical Security, a firm specializing in security educational and training tools. Logical Security offers curriculum, virtual labs, instructor slides and tools for lease by training companies, security companies, military organizations, government sectors and corporations.

Shon is also a security consultant, an engineer in the Air Force's Information Warfare unit, an entrepreneur and an author. She has authored two best selling CISSP books, including CISSP All-in-One Exam Guide, and was a contributing author to the book Hacker's Challenge. Shon is currently finishing her newest book, Gray Hat Hacking: The Ethical Hacker's Handbook.

CISSP® is a registered certification mark of the International Information Systems Security Certification Consortium, Inc., also known as ISC(2).

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT CISSP Certification Security certifications Certification still pays for CISSPs, CISMs CISSP Domain 1 quiz: Security Management Practices CISSP Domain 2 quiz: Access Control CISSP Domain 3 quiz: Cryptography CISSP Domain 6 quiz: Application System and Development CISSP Domain 5 quiz: Telecommunications and Networking CISSP Domain 4 quiz: Security Models and Architecture CISSP Domain 7 quiz: Business Continuity CISSP Domain 9 quiz: Physical Security CISSP Certification Research Vulnerability Assessment Spotlight article: Domain 10, Operations Security Security visualization helps make log files work Screencast: How to use Wikto for Web server assessment Security data lapses hamper researchers Database patch denial: How 'critical' are Oracle's CPUs? Is attack code valuable for vulnerabilities or just a publicity stunt? Will the features of Windows Vista SP1 encourage wider adoption of the OS? Is a Master Boot Record (MBR) rootkit completely invisible to the OS? How to install and configure Nessus Nessus 3 Tutorial Vulnerability Assessment Research Configuration Management 5 Steps Toward Effective Change Management Misconfiguration issues could have contributed to Hannaford breach Misconfigured networks create huge security risks Will saving Microsoft patches and updates on a CD improve installation efforts? Private sector should learn from government insecurity Compliance drives security configuration management File format vulnerabilities: Protecting your applications Standalone patch management vendors under siege Change control helps IT deal with changing threats Subpar signatures embolden call for antivirus SLAs Configuration Management Research

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary Certified Information Systems Security Professional  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary