Domains

The document outlines key domains of security principles, including information assurance concepts, risk management, security controls, and the ISC2 Code of Ethics. It also covers business continuity, disaster recovery, incident response, access controls, network security, and security operations. Each domain highlights essential components, purposes, and best practices for maintaining security in various contexts.

Uploaded by

ORITSEMUYIWA IKOMI

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

19 views4 pages

Domains

Uploaded by

ORITSEMUYIWA IKOMI

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 4

Domains

Domain 1: Security Principles

1.1 - Understand the security concepts of

information assurance
 Confidentiality
 Integrity
 Availability
 Authentication (e.g., methods of authentication, multi-factor
authentication (MFA))
 Non-repudiation
 Privacy

1.2 - Understand the risk management process

 Risk management (e.g., risk priorities, risk tolerance)
 Risk identification, assessment and treatment

1.3 - Understand security controls

 Technical controls
 Administrative controls
 Physical controls

1.4 - Understand ISC2 Code of Ethics

 Professional code of conduct

1.5 - Understand governance processes

 Policies
 Procedures
 Standards
 Regulations and laws

Domain 2: Business Continuity (BC), Disaster Recovery (DR) & Incident

Response Concepts
2.1 - Understand business continuity (BC)
 Purpose
 Importance
 Components

2.2 - Understand disaster recovery (DR)

 Purpose
 Importance
 Components

2.3 - Understand incident response

 Purpose
 Importance
 Components

Domain 3: Access Controls Concepts

3.1 - Understand physical access controls

 Physical security controls (e.g., badge systems, gate entry,
environmental design)
 Monitoring (e.g., security guards, closed-circuit television
(CCTV), alarm systems, logs)
 Authorized versus unauthorized personnel

3.2 - Understand logical access controls

 Principle of least privilege
 Segregation of duties
 Discretionary access control (DAC)
 Mandatory access control (MAC)
 Role-based access control (RBAC)

Domain 4: Network Security

4.1 - Understand computer networking

 Networks (e.g., Open Systems Interconnection (OSI) model,
Transmission Control Protocol/Internet Protocol (TCP/IP) model,
Internet Protocol version 4 (IPv4), Internet Protocol version 6
(IPv6), WiFi)
 Ports
 Applications

4.2 - Understand network threats and attacks

 Types of threats (e.g., distributed denial-of-service (DDoS),
virus, worm, Trojan, man-in-the-middle (MITM), side-channel)
 Identification (e.g., intrusion detection system (IDS), host-
based intrusion detection system (HIDS), network intrusion
detection system (NIDS))
 Prevention (e.g., antivirus, scans, firewalls, intrusion
prevention system (IPS))

4.3 - Understand network security infrastructure

 On-premises (e.g., power, data center/closets, Heating,
Ventilation, and Air Conditioning (HVAC), environmental, fire
suppression, redundancy, memorandum of understanding
(MOU)/memorandum of agreement (MOA))
 Design (e.g., network segmentation (demilitarized zone (DMZ),
virtual local area network (VLAN), virtual private network
(VPN), micro-segmentation), defense in depth, Network Access
Control (NAC) (segmentation for embedded systems, Internet
of Things (IoT))
 Cloud (e.g., service-level agreement (SLA), managed service
provider (MSP), Software as a Service (SaaS), Infrastructure as
a Service (IaaS), Platform as a Service (PaaS), hybrid)

Domain 5: Security Operations

5.1 - Understand data security

 Encryption (e.g., symmetric, asymmetric, hashing)
 Data handling (e.g., destruction, retention, classification,
labeling)
 Logging and monitoring security events
5.2 - Understand system hardening
 Configuration management (e.g., baselines, updates, patches)

5.3 - Understand best practice security policies

 Data handling policy
 Password policy
 Acceptable Use Policy (AUP)
 Bring your own device (BYOD) policy
 Change management policy (e.g., documentation, approval,
rollback)
 Privacy policy

5.4 - Understand security awareness training

 Purpose/concepts (e.g., social engineering, password
protection)
 Importance

Mastering Digital 2D and 3D Art. The Artists Guide To High-Quality Digital Art Creation (PDFDrive)
100% (1)
Mastering Digital 2D and 3D Art. The Artists Guide To High-Quality Digital Art Creation (PDFDrive)
341 pages
Cybersecurity Basics Course Guide
No ratings yet
Cybersecurity Basics Course Guide
7 pages
Digital Portfolio
No ratings yet
Digital Portfolio
14 pages
Comptia Security+ Sy0-601: Course Content
50% (2)
Comptia Security+ Sy0-601: Course Content
8 pages
Module 1 - Intro To Computing
No ratings yet
Module 1 - Intro To Computing
23 pages
Cyber Security MCQ
100% (6)
Cyber Security MCQ
2 pages
ISC2 CC Study Notes Yakshvardhan Jaitely
No ratings yet
ISC2 CC Study Notes Yakshvardhan Jaitely
6 pages
Domain 1.0: General Security Concepts
No ratings yet
Domain 1.0: General Security Concepts
3 pages
Java Programming Exercises Volume Two Java Standard Library
No ratings yet
Java Programming Exercises Volume Two Java Standard Library
323 pages
CISSP 2024 Security Domains Overview
100% (1)
CISSP 2024 Security Domains Overview
7 pages
CISSP Study Guide 2021
No ratings yet
CISSP Study Guide 2021
103 pages
CSX-Fundamentos de Ciberseguridad
No ratings yet
CSX-Fundamentos de Ciberseguridad
4 pages
Isc2 CC
No ratings yet
Isc2 CC
11 pages
Comprehensive Guide to Security and Risk Management
No ratings yet
Comprehensive Guide to Security and Risk Management
16 pages
Client Centric Consistency Models
100% (1)
Client Centric Consistency Models
11 pages
Btech It Security Fundamentals
No ratings yet
Btech It Security Fundamentals
6 pages
CISSP 4th Edition: Key Security Domains
No ratings yet
CISSP 4th Edition: Key Security Domains
3 pages
Cyber Security
No ratings yet
Cyber Security
7 pages
Security+ Study Guide Contents
No ratings yet
Security+ Study Guide Contents
37 pages
Introduction Information Assurance and Security 1
No ratings yet
Introduction Information Assurance and Security 1
12 pages
2024 SSCP Detailed Content Outline With Weights Public Use Only
No ratings yet
2024 SSCP Detailed Content Outline With Weights Public Use Only
4 pages
NII VAPT Report
No ratings yet
NII VAPT Report
93 pages
Navigation Menu: Skip To Content
No ratings yet
Navigation Menu: Skip To Content
61 pages
ML59 Netriders
No ratings yet
ML59 Netriders
41 pages
Faculty e Notes Unit 1
No ratings yet
Faculty e Notes Unit 1
20 pages
INF1505 - Module 5 - Study Notes
No ratings yet
INF1505 - Module 5 - Study Notes
16 pages
SAD Unit-5
No ratings yet
SAD Unit-5
8 pages
Module For MIS Chapter 8 2
No ratings yet
Module For MIS Chapter 8 2
15 pages
CyberEssentials v1.1 - Scope and Sequence PDF
No ratings yet
CyberEssentials v1.1 - Scope and Sequence PDF
4 pages
CISSP Exam Study Guide
100% (1)
CISSP Exam Study Guide
93 pages
Network Security Basics Course
No ratings yet
Network Security Basics Course
7 pages
Security 1.1 - Security Control Types
No ratings yet
Security 1.1 - Security Control Types
11 pages
Plan - Learning Security
No ratings yet
Plan - Learning Security
6 pages
From Sqli To Shell II
No ratings yet
From Sqli To Shell II
37 pages
Module - 2 - CS701 - Information Security - Dr. M.selvam
No ratings yet
Module - 2 - CS701 - Information Security - Dr. M.selvam
30 pages
CISSP Program Overview
No ratings yet
CISSP Program Overview
18 pages
Domain 1
No ratings yet
Domain 1
4 pages
Catalogo - SMART CONNECT
No ratings yet
Catalogo - SMART CONNECT
11 pages
Gcworld Mooc Reviewer
No ratings yet
Gcworld Mooc Reviewer
4 pages
CISSP & CCSP Combo Training Brochurepdf
No ratings yet
CISSP & CCSP Combo Training Brochurepdf
17 pages
01 Intro 1
No ratings yet
01 Intro 1
16 pages
Zanasi Z1 Thermal Inkjet RemoteManager Handbuch
No ratings yet
Zanasi Z1 Thermal Inkjet RemoteManager Handbuch
185 pages
Unit 3
No ratings yet
Unit 3
98 pages
Network Security Unit 1,2
No ratings yet
Network Security Unit 1,2
36 pages
10 1 1 1 6269 PDF
No ratings yet
10 1 1 1 6269 PDF
231 pages
Quick Notes of Essential of Cyber Security Subject by MCA Scholar's Group ?
No ratings yet
Quick Notes of Essential of Cyber Security Subject by MCA Scholar's Group ?
20 pages
Cit 101
No ratings yet
Cit 101
22 pages
CC Crash Course by Elizabeth Ekedoro
No ratings yet
CC Crash Course by Elizabeth Ekedoro
22 pages
Csibridge V23.1.0 Release Notes: Notice Date: 13-March-2021
No ratings yet
Csibridge V23.1.0 Release Notes: Notice Date: 13-March-2021
7 pages
Information System Security
No ratings yet
Information System Security
19 pages
HCIA SEC Day - 1
No ratings yet
HCIA SEC Day - 1
68 pages
ISC2 Certification in CyberSecurity
No ratings yet
ISC2 Certification in CyberSecurity
2 pages
Resumécc 124022
No ratings yet
Resumécc 124022
46 pages
HSDPA HSUPA and HSPA+
No ratings yet
HSDPA HSUPA and HSPA+
65 pages
RTF Document Structure Guide
No ratings yet
RTF Document Structure Guide
62 pages
TBC602 Network Security Notes
No ratings yet
TBC602 Network Security Notes
5 pages
CISSP Program Overview
No ratings yet
CISSP Program Overview
19 pages
U1-T7 Protecting Against Malware Attacks. - Intruder Attacks - Addressing Physical Security
No ratings yet
U1-T7 Protecting Against Malware Attacks. - Intruder Attacks - Addressing Physical Security
18 pages
Cyber Security
No ratings yet
Cyber Security
7 pages
Cybersecurity Management Guide
No ratings yet
Cybersecurity Management Guide
35 pages
Design and Implementation of High Speed Carry Select Adder
No ratings yet
Design and Implementation of High Speed Carry Select Adder
6 pages
Part 4-50-2 Merchant Initiated Closed Loop Payment API Implementation Guide v1.0
No ratings yet
Part 4-50-2 Merchant Initiated Closed Loop Payment API Implementation Guide v1.0
29 pages
Unit I CNS
No ratings yet
Unit I CNS
10 pages
Certifiedincybersecurity Isc2
No ratings yet
Certifiedincybersecurity Isc2
28 pages
Notes
No ratings yet
Notes
5 pages
Introduction To Network SecurityD1
No ratings yet
Introduction To Network SecurityD1
3 pages
Cybersecurity Basics for IT Pros
No ratings yet
Cybersecurity Basics for IT Pros
136 pages
Chapter 5 Inf 1505
No ratings yet
Chapter 5 Inf 1505
5 pages
Investigating Windows
No ratings yet
Investigating Windows
10 pages
Wa0002.
No ratings yet
Wa0002.
15 pages
CYberSEcurity REvision
No ratings yet
CYberSEcurity REvision
17 pages
CheatSheet - SAL1
No ratings yet
CheatSheet - SAL1
3 pages
Introduction To MongoDB
No ratings yet
Introduction To MongoDB
8 pages
Demonstration Checklists: Demonstration Checklist Assessment Tools
100% (1)
Demonstration Checklists: Demonstration Checklist Assessment Tools
2 pages
Network Security
100% (3)
Network Security
42 pages
GC 2024 10 08
No ratings yet
GC 2024 10 08
6 pages
131 Service Manual - Aspire Ze8
No ratings yet
131 Service Manual - Aspire Ze8
211 pages
3 Year Aie Diploma Proposed
No ratings yet
3 Year Aie Diploma Proposed
10 pages
383 965281 Unit5
No ratings yet
383 965281 Unit5
5 pages
Exercise - Digital Documentation - Elementary
No ratings yet
Exercise - Digital Documentation - Elementary
3 pages
Singly Linked List
No ratings yet
Singly Linked List
5 pages
DON DIACAP Handbook V1 0 Final - 15 July08 V
No ratings yet
DON DIACAP Handbook V1 0 Final - 15 July08 V
169 pages
FSM Design in VHDL for FPGA
No ratings yet
FSM Design in VHDL for FPGA
3 pages
Suman Resume
No ratings yet
Suman Resume
2 pages
Webleaflet ENG Amiko Mira WiFi v170719
No ratings yet
Webleaflet ENG Amiko Mira WiFi v170719
2 pages
Oracle Cloud Engineer Profile
No ratings yet
Oracle Cloud Engineer Profile
1 page
Certified in Cybersecurity Certification Exam Outline
No ratings yet
Certified in Cybersecurity Certification Exam Outline
4 pages