Transcription of Sunflower CISSP
{{id}} {{{paragraph}}}
CISSP Summary Version Maarten de Frankrijker, CISSP . Revised by Christian Reina, CISSP . Revised by Steve Warnock __..-/ \-. ( \__/ ). /` ;;\.-`\. \ _.\;;/._ /. ( / \ ). '-\__/-'.-, , \\ (-. ). |\_ ||/.-`. \'.\_ |;`. '--,\|| , `;| _/|. // _/.'/. //_/,--'. ||'-`. Domain 1: Security and Risk Management Concepts (10). CIA. DAD - NEGATIVE -(disclosure alteration and destruction). Confidentiality - prevent unauthorized disclosure, need to know, and least privilege. Assurance that information is not disclosed to unauthorized programs, users, processes, encryption, logical and physical access control, Integrity - no unauthorized modifications, consistent data, protecting data or a resource from being altered in an unauthorized fashion Availability - reliable and timely, accessible, fault tolerance and recovery procedures, WHEN.
Section 404 is the about internal controls assessment: describing logical controls over accounting files; good auditing and information security. Corporate Officer Liability (SOX) - Executives are now held liable if the organization they represent is not compliant with the law.
Domain:
Source:
Link to this page:
Please notify us if you found a problem with this document:
{{id}} {{{paragraph}}}