CISSP D-1 Security & Risk Management

Become a CISSP: Certified Information Systems Security Professional
Accelerate your cybersecurity career with the CISSP certification. Earning the CISSP proves you have what it takes to effectively design, implement and manage a best-in-class cybersecurity program. With a CISSP, you validate your expertise and become an (ISC)² member, unlocking a broad array of exclusive resources, educational tools, and peer-to-peer networking opportunities. Prove your skills, advance your career, and gain the support of a community of cybersecurity leaders here to support you throughout your career
What is cover in this Domain (1)?
- CIA Triad
- Security Governance principles
- Determine Compliance Requirements
- Global Legal & Regulatory Issues
- Professional Ethics
- Policy, Procedure, Standards & Guidelines
- Business Continuity
- Personal Policies & Procedures
- Risk Management
- Threat Modeling
- Supply Chain Risk Management
- Security Awareness, Education, & Training Program
What is the target audience?
This course is intended for absolute beginners and IT professionals looking to make the move into the Cyber Security field. No programming experience or prior security knowledge is required. A basic understanding of networking and TCP/IP is helpful. This course is intended for anyone who is interested in a career in Cyber Security CISSP concepts teach many professionals to plan for and address Cyber Security issues on a daily basis using free open source software tools.
Information security Principles
This lesson covers the fundamental information security principles or goals such as confidentiality, integrity and availability. CISSP candidates are expected to master these fundamental principles.
Compliance Requirements
Business Continuity Management (BCM)
Business Continuity Planning - BCP Processes
Business Continuity Planning - BCP Processes
Risk Management
Risk Management is the processes of identifying, analyzing, assessing, mitigating, or transferring risk.
- It’s main goal is the reduction of probability or impact of a risk to acceptable levels
- Eliminating risk to zero is impossible, however, significant risk reduction is possible
Risk Management is the processes of identifying, analyzing, assessing, mitigating, or transferring risk.
- It’s main goal is the reduction of probability or impact of a risk to acceptable levels
- Eliminating risk to zero is impossible, however, significant risk reduction is possible
Information security Governance
Global Legal & Regulatory Issues
Business Continuity Planning - BCP Processes
This is the largest domain in CISSP, providing a comprehensive overview of the things you need to know about information systems management. It covers:
• The confidentiality, integrity and availability of information;
• Security governance principles;
• Compliance requirements;
• Legal and regulatory issues relating to information security;
• IT policies and procedures; and
• Risk-based management concepts.