With the growing threat of computer viruses and Internet security breaches, companies are fiercely headhunting for CISSP certified security professionals. The industry standard test on IT security, the Certified Information Systems Security Professionals (CISSP) exam is administered 16 times per year throughout the U.S. and Europe. This book serves both as a prep guide for IT professionals seeking to advance their careers through CISSP certification and as a reference for readers who need a fundamental end-to-end security reference book. Co-authored by Ronald Krutz, this handy guide explains the ten security domains covered by the exam, from security management to cryptography to disaster recovery planning to legal and ethical issues. Sample questions and answers are also included.
The Cissp Prep Guide
and over one million other books are available for Amazon Kindle.
Learn more
FREE Two-Day Shipping for Students. Learn more |
| ||||||||||||||||||||
Book Description
Editorial Reviews
Amazon.com Review
The Certified Information Systems Security Professional (CISSP) rating is difficult to earn and rare in the marketplace, which means you're a valuable commodity if you've proven your skills by passing the exam. The CISSP Prep Guide, one of only a handful of books on its subject, does a good job of giving readers a feel for the scope of the test and the style of its questions. It's ideal for use either as a preliminary survey of the CISSP subject areas (the test's publisher and the authors of this book call them "domains") for relative newcomers to computer security, or as a pure study guide to help more experienced professionals zero in on the weak spots in their knowledge. Don't expect to do well on the CISSP exam having only read this book. You'll want to have some practical experience and some specialized reading under your belt.
Ronald Krutz and Russell Vines are good writers and fine teachers; they explain the wide-ranging CISSP domains (which have to do with everything from cryptographic algorithms to fire-suppression techniques to legal principles). They take care to explain potentially unfamiliar terms--there's a good glossary in the back of this book--and employ conceptual diagrams well. However, the answer keys for the sample questions that conclude each chapter aren't annotated and some readers will wish for more references to specialized sources. --David Wall
Topics covered: The subjects covered by the Certified Information Systems Security Professional (CISSP) exam published by the International Information Systems Security Certification Consortium, including cryptography, access control, security policy, legal matters, and the physical safety of information, equipment, and people.
Review
"...fulfils its purpose well and forms a good introduction to the concepts and jargon used in all areas of IT security...worth having as a reference dictionary..." (Computer Bulletin, September 2002)
Product Details
Would you like to update product info or give feedback on images?
|
More About the Authors
Discover books, learn about writers, read author blogs, and more.
Customer Reviews
|
Share your thoughts with other customers:
|
||||||||||||||||||||||
|
Most Helpful Customer Reviews
25 of 26 people found the following review helpful:
5.0 out of 5 stars
This IS the Book to buy FIRST!,
This review is from: The CISSP Prep Guide: Mastering the Ten Domains of Computer Security (Hardcover)
It's been said many times that the vast ocean of the CISSP Common Body of Knowledge (CBK) is fifty miles wide and two miles deep and preparing for it can be quite an overwhelming endeavor. Various on-line study groups and web sites have numerous suggestions and links where freely available materials and helpful hints may be found. Individuals share there study guides and suggest the best books to procure for the study quest. I myself have participated and contributed in these vibrant forums. It's been said many times over that NO one book can effectively cover the CBK and to prepare the CISSP candidate for the exam. I too have amassed a large collection of the most suggested tomes. Well The CISSP Prep Guide almost negates this statement. The CISSP Prep Guide is now the FIRST place to start! I wish it had been in print a year ago when I began my quest for the CISSP. It is a complete and affordable textbook covering the MEAT of the CBK. This book completely defines and explains the major points of the CBK. It is an extremely readable and understandable text. If you can't afford attending the ISC2 CISSP Seminar either because of cost or time away from work this book is for you. If you have already attended the CISSP Seminar this book is for you. I was blessed by having the opportunity in attending the CISSP Seminar yet I am still finding that The CISSP Prep Guide is building upon the materials presented in the seminar. I can see where my copy of The CISSP Prep Guide will quickly become a dog-eared reference text that I use to refer to while carrying out my duties as an Information Systems Security Officer with the U.S. Government.
16 of 16 people found the following review helpful:
4.0 out of 5 stars
for CISSP, start here,
By kgab (northwest) - See all my reviews
This review is from: The CISSP Prep Guide: Mastering the Ten Domains of Computer Security (Hardcover)
This book is exactly what CISSP candidates need to prepare for the exam. The authors make sure to cover the CISSP Common Body of Knowledge in enough detail, give pointers along the way, and include sample questions to practice for the exam.Since this is a study guide, the emphasis is on breadth, not depth of coverage, and that's the way it should be. Several inaccuracies and typos should be corrected in the second edition (e.g. the description of lattice-based control on p. 34, or sample question 9 in Chapter 10 and its answer). So is this now my favorite survey of computer and information security? Not quite. I still prefer "Secure Computing" by Rita C. Summers, even though it is already 4 years old. Unfortunately it is out of print, and it is a mystery why McGraw Hill wouldn't print a few thousand copies to satisfy the demand. Another CISSP prep book is coming soon (Mandy Andress, "CISSP Exam Cram"). Let's hope it will be as good as the Prep Guide.
18 of 19 people found the following review helpful:
4.0 out of 5 stars
Scholarly Presentation - Keeps Reader Focused,
By James W. S. Ludwig, CISSP (San Diego, Ca USA) - See all my reviews
This review is from: The CISSP Prep Guide: Mastering the Ten Domains of Computer Security (Hardcover)
I studied this work 30-days before taking the CISSP November 2001 examination. You don't pass the CISSP exam from just reading; broad experience is mandatory. The 'Prep Guide' helped me pull my experience into focus for the exam; the book does not give you the answers on the test, it helps you understand the concepts, thus, it helps the reader understand the exam questions which in turn allows the exam taker to go quickly into deep memory and find the answer that most resembles those on the exam. Of all the thousands of dollars of "security" books that I have purchased, read, and studied, the 'Prep Guide' is the only one that extensively covers the broad spectrum of topics emphasized in the exam. Main plusses of the book: Oh, yes, and it helped me receive my CISSP certification in November. Buy the book and study the book, you will not go wrong.
Share your thoughts with other customers: Create your own review
|
|
Inside This Book
(learn more)
First Sentence:
In our first chapter we will enter the domain of Security Management. Read the first page Key Phrases - Statistically Improbable Phrases (SIPs): (learn more)
work product satisfying, formal access approval, data remanence, system than the minimum, external penetration testing, software assurance measures, realized threat event, data scavenging, available security features, critical support areas, disaster recovery plan test, covert timing channels, business impact assessment, information classification scheme, audit trail files, expected financial loss, information security controls, covert storage channels, implements confidentiality, reference monitor concept, covert channel analysis, information security requirements, ten domains, key cryptographic system, security policy model Key Phrases - Capitalized Phrases (CAPs): (learn more)
United States, Data Link Layer, Sample Questions, Prep Guide, Network Layer, Physical Layer, Common Criteria, Annualized Loss Expectancy, Digital Subscriber Line, World Wide Web, Challenge Handshake Authentication Protocol, Department of Defense, Digital Signature Standard, European Union, Transmission Control Protocol, Advanced Encryption Standard, Federal Sentencing Guidelines, Integrated Services Digital Network, Message Authentication Code, Output Feedback, Post Accreditation, Public Key Infrastructure, Red Book, Secure Shell, Single Loss Expectancy New!
Books on Related Topics | Concordance | Text Stats Browse Sample Pages:
Front Cover | Table of Contents | First Pages | Index | Back Cover | Surprise Me!
In our first chapter we will enter the domain of Security Management. Read the first page Key Phrases - Statistically Improbable Phrases (SIPs): (learn more)
work product satisfying, formal access approval, data remanence, system than the minimum, external penetration testing, software assurance measures, realized threat event, data scavenging, available security features, critical support areas, disaster recovery plan test, covert timing channels, business impact assessment, information classification scheme, audit trail files, expected financial loss, information security controls, covert storage channels, implements confidentiality, reference monitor concept, covert channel analysis, information security requirements, ten domains, key cryptographic system, security policy model Key Phrases - Capitalized Phrases (CAPs): (learn more)
United States, Data Link Layer, Sample Questions, Prep Guide, Network Layer, Physical Layer, Common Criteria, Annualized Loss Expectancy, Digital Subscriber Line, World Wide Web, Challenge Handshake Authentication Protocol, Department of Defense, Digital Signature Standard, European Union, Transmission Control Protocol, Advanced Encryption Standard, Federal Sentencing Guidelines, Integrated Services Digital Network, Message Authentication Code, Output Feedback, Post Accreditation, Public Key Infrastructure, Red Book, Secure Shell, Single Loss Expectancy New!
Books on Related Topics | Concordance | Text Stats Browse Sample Pages:
Front Cover | Table of Contents | First Pages | Index | Back Cover | Surprise Me!
Citations (learn more)
This book cites 32
books:
See all 32 books this book cites
1
book
cites this book:
- European Union (Aspects of Britain) by Central Office of Information on 6 pages
- FIGHTING COMPUTER CRIME by Timothy Parker on page 326, and Back Matter
- Computer Security (Understanding Computers) by Time-Life Books in Back Matter (1), and Back Matter (2)
- Information Systems 2e by Benson in Front Matter
- Java Security (2nd Edition) by Scott Oaks in Back Matter
See all 32 books this book cites
- Testing Web Security: Assessing the Security of Web Sites and Applications by Steven Splaine in Back Matter
Books on Related Topics
(learn more)
|
What Other Items Do Customers Buy After Viewing This Item?
Tags Customers Associate with This Product(What's this?)Click on a tag to find related items, discussions, and people.
|
Customer Discussions
|
This product's forum
Active discussions in related forums
Search Customer Discussions
|
Related forums
|
Listmania!
So You'd Like to...
|
|
Look for Similar Items by Category
- Books > Computers & Technology > Business & Culture > Hacking
- Books > Computers & Technology > Business & Culture > Privacy
- Books > Computers & Technology > Certification > CompTIA
- Books > Computers & Technology > Networking > Network Security
- Books > Computers & Technology > Security & Encryption
- Books > New & Used Textbooks > Computer Science
