Official (ISC)2 Guide to the CISSP CBK

Front Cover
Steven Hernandez, CISSP
CRC Press, Nov 14, 2006 - Computers - 1112 pages
4 Reviews
The urgency for a global standard of excellence for those who protect the networked world has never been greater. (ISC)2 created the information security industry’s first and only CBK®, a global compendium of information security topics. Continually updated to incorporate rapidly changing technologies and threats, the CBK continues to serve as the basis for (ISC)2’s education and certification programs.
Unique and exceptionally thorough, the Official (ISC)2® Guide to the CISSP®CBK®provides a better understanding of the CISSP CBK — a collection of topics relevant to information security professionals around the world. Although the book still contains the ten domains of the CISSP, some of the domain titles have been revised to reflect evolving terminology and changing emphasis in the security professional’s day-to-day environment. The ten domains include information security and risk management, access control, cryptography, physical (environmental) security, security architecture and design, business continuity (BCP) and disaster recovery planning (DRP), telecommunications and network security, application security, operations security, legal, regulations, and compliance and investigations.
Endorsed by the (ISC)2, this valuable resource follows the newly revised CISSP CBK, providing reliable, current, and thorough information. Moreover, the Official (ISC)2® Guide to the CISSP® CBK® helps information security professionals gain awareness of the requirements of their profession and acquire knowledge validated by the CISSP certification.
The book is packaged with a CD that is an invaluable tool for those seeking certification. It includes sample exams that simulate the actual exam, providing the same number and types of questions with the same allotment of time allowed. It even grades the exam, provides correct answers, and identifies areas where more study is needed.

What people are saying - Write a review

User Review - Flag as inappropriate

Very hard to read through! can only serve as an unavoidable CISSP exam reference.

User Review - Flag as inappropriate

While the information on the 10 Domains is fairly well written and clear, the sample test questions are not. Quite often the test question answers contradict the wirtten material (i.e., the answers to the test questions are often wrong!). This is extremely frustrating when using this book to study for the CISSP Exam. 

Selected pages


Information Security and Risk Management
Access Control
Physical Environmental Security
Security Architecture and Design
Business Continuity and Disaster Recovery Planning
Telecommunications and Network Security
Application Security
Operations Security
Legal Regulations Compliance and Investigations
Answers to Sample Questions
Certified Information Systems Security Professional CISSP Candidate Information Bulletin

Other editions - View all

Common terms and phrases

Bibliographic information