RTM’d today: CISSP Rapid Review

We’re very pleased to announce that Darril Gibson’s book, CISSP Rapid Review has shipped to the printer!

Assess your readiness for the CISSP Exam—and quickly identify where you need to focus and practice. This practical, streamlined guide provides objective overviews, exam tips, "need-to-know" checklists, review questions, and a list of valuable resources—all designed to help evaluate and reinforce your preparation.

Bolster your exam prep with a Rapid Review of these objectives:

· Information Security Governance and Risk Management

· Access Control

· Cryptography

· Physical (Environmental) Security

· Security Architecture and Design

· Legal, Regulations, Investigations and Compliance

· Telecommunications and Network Security

· Business Continuity and Disaster Recovery Planning

· Software Development Security

· Security Operations

This book is an ideal complement to the in-depth training of the Microsoft Press 2-in-1 Training Kit for the CISSP Exam and other exam-prep resources.

Darril’s book will be available via online retailers around December 12. In the meantime, here’s more information about the book.

Contents at a Glance

Chapter 1: Access Control

Chapter 2: Telecommunications and Network Security

Chapter 3: Information Security Governance & Risk Management

Chapter 4: Application Development Security

Chapter 5: Cryptography

Chapter 6: Security Architecture & Design

Chapter 7: Operations Security

Chapter 8: Business Continuity & Disaster Recovery Planning

Chapter 9: Legal, Regulations, Investigations and Compliance

Chapter 10: Physical (Environmental) Security

Introduction

This Rapid Review is designed to assist you with studying for the (ISC)² CISSP exam. The Rapid Review series is designed for exam candidates who already have a good grasp of the exam objectives through a combination of experience, skills, and study and could use a concise review guide to help them assess their readiness for the exam.

The CISSP exam is aimed at an IT security professional who has:

· A minimum of 5 years of direct full-time security work experience in two or more of the 10 domains of the (ISC)2 CISSP Common Body of Knowledge (CBK)

· One year can be waived for certain college degrees and technical certifications.

Candidates who take this exam should have the knowledge and skills required to identify risk and participate in risk mitigation activities, provide infrastructure, application, operational and information security, apply security controls to maintain confidentiality, integrity and availability, identify appropriate technologies and products, and operate with an awareness of applicable policies, laws and regulations. It is important to note that real-world experience with security is required prior to earning the CISSP certification and that having practical knowledge is a key component to achieving a passing score.

This is a Rapid Review and not a comprehensive guide such as the CISSP Training Kit. The book covers every exam objective on the CISSP exam, but will not necessarily cover every exam question. (ISC)² regularly adds new questions to the exam, making it impossible for this (or any) book to provide every answer. Instead, this book is designed to supplement your existing independent study and real-world experience.

If you encounter a topic in this book that you do not feel completely comfortable with, you can visit the links described in the text, in addition to researching the topic further using other websites, as well as consulting support forums. If you review a topic and find that you don’t understand it, you should consider consulting the CISSP Training Kit from Microsoft Press. You can also purchase practice exams, or use the one available with the Training Kit, to further determine if you need further study on particular topics.

(ISC)² Professional Certification Program

(ISC)² professional certifications cover the technical skills and knowledge needed to succeed in different IT careers. The CISSP certification is a vendor-neutral credential. An exam is an internationally recognized validation of skills and knowledge, and is used by organizations and professionals around the globe. (ISC)² CISSP certification is ISO 17024 Accredited (Personnel Certification Accreditation) and, as such, undergoes regular reviews and updates to the exam objectives. (ISC)² exam objectives reflect the subject areas in an edition of an exam, and result from subject matter expert workshops and industry-wide survey results regarding the skills and knowledge required of an professional with a number of years of experience.