(ISC)2 CISSP Certified Information Systems Security Professional Official Practice Tests (E-Book) von Mike Chapple

Introduction xv

Chapter 1 Security and Risk Management (Domain 1) 1

Chapter 2 Asset Security (Domain 2) 25

Chapter 3 Security Architecture and Engineering (Domain 3) 49

Chapter 4 Communication and Network Security (Domain 4) 73

Chapter 5 Identity and Access Management (Domain 5) 97

Chapter 6 Security Assessment and Testing (Domain 6) 121

Chapter 7 Security Operations (Domain 7) 145

Chapter 8 Software Development Security (Domain 8) 169

Chapter 9 Practice Test 1 195

Chapter 10 Practice Test 2 225

Chapter 11 Practice Test 3 253

Chapter 12 Practice Test 4 283

Appendix Answers 311

Chapter 1: Security and Risk Management (Domain 1) 312

Chapter 2: Asset Security (Domain 2) 321

Chapter 3: Security Architecture and Engineering (Domain 3) 333

Chapter 4: Communication and Network Security (Domain 4) 342

Chapter 5: Identity and Access Management (Domain 5) 353

Chapter 6: Security Assessment and Testing (Domain 6) 365

Chapter 7: Security Operations (Domain 7) 377

Chapter 8: Software Development Security (Domain 8) 389

Chapter 9: Practice Test 1 400

Chapter 10: Practice Test 2 414

Chapter 11: Practice Test 3 428

Chapter 12: Practice Test 4 441

Index 457

Full-length practice tests covering all CISSP domains for the ultimate exam prep

The (ISC)2 CISSP Official Practice Tests is a major resource for (ISC)2 Certified Information Systems Security Professional (CISSP) candidates, providing 1300 unique practice questions. The first part of the book provides 100 questions per domain. You also have access to four unique 125-question practice exams to help you master the material. As the only official practice tests endorsed by (ISC)2, this book gives you the advantage of full and complete preparation. These practice tests align with the 2021 version of the exam to ensure up-to-date preparation, and are designed to cover what you will see on exam day. Coverage includes: Security and Risk Management, Asset Security, Security Architecture and Engineering, Communication and Network Security, Identity and Access Management (IAM), Security Assessment and Testing, Security Operations, and Software Development Security.

The CISSP credential signifies a body of knowledge and a set of guaranteed skills that put you in demand in the marketplace. This book is your ticket to achieving this prestigious certification, by helping you test what you know against what you need to know.

• Test your knowledge of the 2021 exam domains
• Identify areas in need of further study
• Gauge your progress throughout your exam preparation
• Practice test taking with Sybexs online test environment containing the questions from the book, which is supported by Wiley's support agents who are available 24x7 via email or live chat to assist with access and login questions

The CISSP exam is refreshed every few years to ensure that candidates are up-to-date on the latest security topics and trends. Currently-aligned preparation resources are critical, and periodic practice tests are one of the best ways to truly measure your level of understanding.

ABOUT THE AUTHORS

Mike Chapple, PhD, CISSP, is Teaching Professor of Information Technology, Analytics, and Operations at Notre Dames Mendoza College of Business and serves as the Academic Director of the Universitys Master of Science in Business Analytics program. He holds multiple additional certifications, including the CIPP/US, CySA+, CISM, PenTest+, and Security+. He is a bestselling author of more than 25 books including(ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide,7th, 8th, and 9th Editions.

David Seidl, CISSP, is Vice President for Information Technology and CIO at Miami University. During his IT career, he has served in a variety of technical and information security roles including serving at the Senior Director for Campus Technology Services at the University of Notre Dame where he co-led Notre Dames move to the cloud. He holds multiple additional technical certifications including CySA+, Pentest+, GPEN, and GCIH. David has written books on security certification and cyberwarfare, including co-authoring the previous editions ofCISSP (ISC)2 Official Practice Tests as well as multiple cybersecurity Sybex Study Guides and Practice Tests for other certifications.