Table of Contents
Introduction xv
Chapter 1 Security and Risk Management (Domain 1) 1
Chapter 2 Asset Security (Domain 2) 25
Chapter 3 Security Architecture and Engineering (Domain 3) 49
Chapter 4 Communication and Network Security (Domain 4) 73
Chapter 5 Identity and Access Management (Domain 5) 97
Chapter 6 Security Assessment and Testing (Domain 6) 121
Chapter 7 Security Operations (Domain 7) 145
Chapter 8 Software Development Security (Domain 8) 169
Chapter 9 Practice Test 1 195
Chapter 10 Practice Test 2 225
Chapter 11 Practice Test 3 253
Chapter 12 Practice Test 4 283
Appendix Answers 311
Chapter 1: Security and Risk Management (Domain 1) 312
Chapter 2: Asset Security (Domain 2) 321
Chapter 3: Security Architecture and Engineering (Domain 3) 333
Chapter 4: Communication and Network Security (Domain 4) 342
Chapter 5: Identity and Access Management (Domain 5) 353
Chapter 6: Security Assessment and Testing (Domain 6) 365
Chapter 7: Security Operations (Domain 7) 377
Chapter 8: Software Development Security (Domain 8) 389
Chapter 9: Practice Test 1 400
Chapter 10: Practice Test 2 414
Chapter 11: Practice Test 3 428
Chapter 12: Practice Test 4 441
Index 457