Académique Documents
Professionnel Documents
Culture Documents
Agenda
• IntroducBon
&
Overview
(20
min)
• CISSP
in
Detail
(30
min
+
40
min)
– Access
Control
– Some
Exam
QuesBons
1
26/03/14
Comparison
Comparison
2
26/03/14
• 0900-‐0910
Intro
• 0910-‐0925
CISM
1
• 0925-‐0940
CISM
2
• 0940-‐0955
CISM
3
• 0955-‐1010
CISM
4
• 1010-‐1025
CISM
5
• Conclusion
3
26/03/14
CISM
Topics
1. InformaBon
Security
Governance
2. InformaBon
Risk
Management
3. InformaBon
Security
Program
Development
4. InformaBon
Security
Program
Management
5. Incident
Management
and
Response
4
26/03/14
5
26/03/14
6
26/03/14
7
26/03/14
8
26/03/14
9
26/03/14
10
26/03/14
10 quesBons
11
26/03/14
12
26/03/14
13
26/03/14
a. handled
as
a
risk,
even
though
there
is
no
threat
b. prioriBzed
for
remediaBon
solely
based
on
impact
c. a
basis
for
analyzing
the
effecBveness
of
controls
d. evaluated
for
threat
and
impact
in
addiBon
to
cost
of
miBgaBon
14
26/03/14
15
26/03/14
16
26/03/14
17
26/03/14
a. plan-‐do-‐check-‐act
b. confidenBality,
integrity,
availablility
c. prevenBon,
detecBon,
correcBon
d. tone
at
the
top
18
26/03/14
19
26/03/14
20
26/03/14
a. feasibility
b. requirements
c. design
d. development
21
26/03/14
a. what
you
have,
what
you
are,
what
you
know
b. what
you
know,
what
you
have,
what
you
are
c. what
you
are,
what
you
have,
what
you
know
d. what
you
are,
what
you
know,
what
you
have
22
26/03/14
23
26/03/14
24
26/03/14
25
26/03/14
26
26/03/14
27
26/03/14
28
26/03/14
29
26/03/14
30
26/03/14
31
26/03/14
a. fidelity
b. business
interrupBon
c. valuable
papers
and
records
d. business
conBnuity
32
26/03/14
33
26/03/14
34