Monday, June 24, 2019

Triad of AIC

Three main pillar of security are:

Confidentiality, Integrity & Availability, abbreviated as AIC or CIA.

Each organization may focus on one aspect, albeit taking care of the other two. For example, military organizations are more focused on keeping data confidential whereas financial organizations focus on integrity and Internet Service Providers focus on availability. None, however, forgets the other aspects of security.


Posted by at No comments:

Friday, May 17, 2019

What is CISSP & why CISSP?

CISSP is short for: Certified Information Systems Security Professional.

It is one of the most popular certificates in IT security field provided by International Information Systems Security Certification Consortium (ISC)² Inc.

Further inform could be found at their website: https://www.isc2.org/Certifications/CISSP



The CISSP is ideal for professionals such as the one in the following list: 

Chief Information Security Officer
Chief Information Officer
Director of Security
IT Director/Manager
Security Systems Engineer
Security Analyst
Security Manager
Security Auditor
Security Architect
Security Consultant
Network Architect

who like to further their skills and/or to pursue a professional certification in security field for their career advancements. Some organizations may want their employees to be certified as part of their mandatory requirement. 

From 2018, the format of CISSP test/exam has changed. The test now an adaptive test, meaning that you do not have to do the whole test to succeed or fail. If the computer determines you have sufficient knowledge and skills in one area, it will not continue to test your skills in that area any longer and jumps to the next domain until you succeed all domain. Similarly, if you fail to exhibit sufficient knowledge you, exam ends with failure. 


The exam consists of 8 domains: 

#
Domain
Weight
1
Security and Risk Management
16%
2
Asset Security
10%
3
Security Engineering
12%
4
Communications and Network Security
12%
5
Identity and Access Management
13%
6
Security Assessment and Testing
11%
7
Security Operations
16%
8
Software Development Security
10%


Posted by at No comments:
Subscribe to: Comments (Atom)