Foreword.

Acknowledgments.

Introduction.

PART 1: FOCUSED REVIEW OF THE CISSP TEN DOMAINS.

Chapter 1. Information Security and Risk Management.

Chapter 2. Access Control.

Chapter 3. Telecommunications and Network Security.

Chapter 4. Crytography.

Chapter 5. Security Architecture and Design.

Chapter 6. Operations Security.

Chapter 7. Application Security.

Chapter 8. Business Continuity Planning and Disaster Recovery Planning.

Chapter 9. Legal, Regulations,Compliance, and Investigtions.

Chapter 10. Physical (Environmental) Security.

PART 2: THE CERTIFICATION AND ACCREDITATION PROFESSIONAL (CAP) CREDENTIAL.

Chapter 11. Understanding Certification and Accreditation.

Chapter 12. Initiation of the System Authorization Process.

Chapter 13. The Certification Phase.

Chapter 14. The Accreditation Phase.

Chapter 15. Continuous Monitoring Process.

Appendix A: Answers to Assessment Questions.

Appendix B: Glossary of Terms and Acronyms.

Appendix C: The Information System Security Architecture Professional (ISSAP) Certification.

Appendix D: The Information System Security Engineering Professional (ISSEP) Certification.

Appendix E: The Information System Security Management Professional (ISSMP) Certification.

Appendix F: Security Control Catalog.

Appendix G: Control baselines.

Index.