The Cissp Prep Guide: Mastering the Cissp and Issep Exams - Softcover

Review

The Certified Information Systems Security Professional (CISSP) rating is difficult to earn and rare in the marketplace, which means you're a valuable commodity if you've proven your skills by passing the exam. The CISSP Prep Guide, one of only a handful of books on its subject, does a good job of giving readers a feel for the scope of the test and the style of its questions. It's ideal for use either as a preliminary survey of the CISSP subject areas (the test's publisher and the authors of this book call them "domains") for relative newcomers to computer security, or as a pure study guide to help more experienced professionals zero in on the weak spots in their knowledge. Don't expect to do well on the CISSP exam having only read this book. You'll want to have some practical experience and some specialized reading under your belt.

Ronald Krutz and Russell Vines are good writers and fine teachers; they explain the wide-ranging CISSP domains (which have to do with everything from cryptographic algorithms to fire-suppression techniques to legal principles). They take care to explain potentially unfamiliar terms--there's a good glossary in the back of this book--and employ conceptual diagrams well. However, the answer keys for the sample questions that conclude each chapter aren't annotated and some readers will wish for more references to specialized sources. --David Wall

Topics covered: The subjects covered by the Certified Information Systems Security Professional (CISSP) exam published by the International Information Systems Security Certification Consortium, including cryptography, access control, security policy, legal matters, and the physical safety of information, equipment, and people.

From the Back Cover

Pass the CISSP and ISSEP exams with this new edition of the bestselling prep guide!

The U.S. government has mandated that all contractors–nearly all current CISSPs, and those yet to be certified as CISSPs–attain the security engineering subject certification Information Systems Security Engineering Professional (ISSEP). The ISSEP targets specific job requirements or career directions, and is an extension of the Certified Information Systems Security Professional (CISSP) certification–the industry standard test for IT security professionals. The CISSP Prep Guide, Second Edition includes new, up-to-date CISSP review material that is relevant to the ISSEP, and provides comprehensive coverage of the ISSEP for those individuals who already have the CISSP credential.

CISSP-exam experts, Ronald Krutz and Russell Dean Vines, have written an extremely focused revision to their bestseller that is essential reading if you’re taking the CISSP test for the first time. Krutz and Vines cover:

• Inside information regarding the new domains of the ISSEP that focus on technical knowledge such as ISSE processes and government regulations
• How the ISSEP complements the CISSP by comprehensively addressing the systems engineering side of information security
• The principal domains addressed by the ISSEP certification, including: systems security engineering, certification and accreditation, technical management, and U.S. Government information assurance regulations
• Feedback from more than 5,000 CISSP test takers