دانلود کتاب (ISC2) – گواهینامه حرفه ای امنیت سیستم های اطلاعاتی (CISSP)

ISC2 CISSP® Certified Information Systems Security Professional Official Practice Tests Fourth Edition is a companion volume to ISC2 CISSP Certified Information Systems Security Professional Official Study Guide, Tenth edition (Sybex, 2024). It includes questions that cover content from the CISSP Detailed Content Outline and exam that became effective on April 15, 2024. If you’re looking to test your knowledge before you take the CISSP exam, this book will help you by providing more than 1,300 questions that cover the CISSP Common Body of Knowledge (CBK) and easy-to-understand explanations of both right and wrong answers. If you’re just starting to prepare for the CISSP exam, we highly recommend that you use the ISC2 CISSP Certified Information Systems Security Professional Official Study Guide to help you learn about each of the domains covered by the CISSP exam. Once you’re ready to test your knowledge, use this book to help find places where you may need to study more or to practice for the exam itself. Since this is a companion to the CISSP Study Guide, this book is designed to be similar to taking the CISSP exam. It contains multipart scenarios as well as standard multiple-choice and matching questions like you may encounter on the certification exam. The book is broken up into 12 chapters: 8 domain-centric chapters with 100 or more questions about each domain, and 4 chapters that contain 125-question practice tests to simulate taking the exam. The CISSP certification is offered by the International Information System Security Certification Consortium (ISC2), a global nonprofit organization. ISC2’s mission statement says that “ISC2 strengthens the influence, diversity and vitality of the field through advocacy, expertise and workforce empowerment that accelerates cyber safety and security in an interconnected world.” ISC2 achieves this mission by delivering the world’s leading information security certification program, the CISSP. ISC2 also offers additional certifications including the following:
• Certified in Cybersecurity (CC)
• Systems Security Certified Practitioner (SSCP)
• Certified Cloud Security Professional (CCSP)
• Governance, Risk and Compliance Certification (CGRC)
• Certified Secure Software Lifecycle Professional (CSSLP)
• Information Systems Security Architecture Professional (ISSAP)
• Information Systems Security Engineering Professional (ISSEP)
• Information Systems Security Management Professional (ISSMP)
The CISSP certification covers eight domains of information security knowledge. These domains are meant to serve as the broad knowledge foundation required to succeed in the information security profession.
• Security and Risk Management
• Asset Security
• Security Architecture and Engineering
• Communication and Network Security
• Identity and Access Management (IAM)
• Security Assessment and Testing
• Security Operations
• Software Development Security
The CISSP domains are periodically updated by ISC2. The most recent revision on April 15, 2024, slightly modified the weighting for Security and Risk Management from 15% to 16%, while decreasing the focus on Software Development Security from 11% to 10%. It also added or expanded coverage of topics such as intellectual property, privacy laws and regulations, software bills of materials, end-of-life support, SASE, operational technology, highperformance computing, intermediate distribution frame, Compute Express Link, and a variety of other topics.
Complete details on the CISSP CBK are contained in the 2024 CISSP Detailed Content Outline. It includes a full outline of exam topics, which can be found on the ISC2 website at www.isc2.org.