The Certified Information Systems Security Professional (CISSP) rating is difficult to earn and rare in the marketplace, which means you're a valuable commodity if you've proven your skills by passing the exam. The CISSP Prep Guide, one of only a handful of books on its subject, does a good job of giving readers a feel for the scope of the test and the style of its questions. It's ideal for use either as a preliminary survey of the CISSP subject areas (the test's publisher and the authors of this book call them "domains") for relative newcomers to computer security, or as a pure study guide to help more experienced professionals zero in on the weak spots in their knowledge. Don't expect to do well on the CISSP exam having only read this book. You'll want to have some practical experience and some specialized reading under your belt.

Ronald Krutz and Russell Vines are good writers and fine teachers; they explain the wide-ranging CISSP domains (which have to do with everything from cryptographic algorithms to fire-suppression techniques to legal principles). They take care to explain potentially unfamiliar terms--there's a good glossary in the back of this book--and employ conceptual diagrams well. However, the answer keys for the sample questions that conclude each chapter aren't annotated and some readers will wish for more references to specialized sources. --David Wall

Topics covered: The subjects covered by the Certified Information Systems Security Professional (CISSP) exam published by the International Information Systems Security Certification Consortium, including cryptography, access control, security policy, legal matters, and the physical safety of information, equipment, and people.


From Book News, Inc.
Helping to prepare for the Certified Information System Security Professionals exam, this book covers the common body of knowledge as defined by the International Information Systems Security Certification Consortium. Chapters address security management practices, access control systems, telecommunications and network security, cryptography, security architecture and models, operations security, applications and systems development, business continuity and disaster recovery planning, law and ethics, and physical security. Krutz is a CISSP instructor. Vines is a security consultant.Copyright © 2004 Book News, Inc., Portland, OR


Book Description
* This updated bestseller features new, more focused review material for the leading computer security certification-the Certified Information Systems Security Professional, or CISSP
* The first book on the market to offer comprehensive review material for the Information Systems Security Engineering Professional (ISSEP) subject concentration, a new CISSP credential that's now required for employees and contractors of the National Security Agency (NSA) and will likely be adopted soon by the FBI, CIA, Department of Defense, and Homeland Security Department
* The number of CISSPs is expected to grow by fifty percent in 2004
* The CD-ROM includes the Boson-powered interactive test engine practice sets for CISSP and ISSEP


Book Info
Serves as a prep guide for IT professionals seeking to advance their careers through CISSP certification and as a reference for readers who need a fundamental end to end security.


From the Back Cover
Pass the CISSP and ISSEP exams with this new edition of the bestselling prep guide! The U.S. government has mandated that all contractors–nearly all current CISSPs, and those yet to be certified as CISSPs–attain the security engineering subject certification Information Systems Security Engineering Professional (ISSEP). The ISSEP targets specific job requirements or career directions, and is an extension of the Certified Information Systems Security Professional (CISSP) certification–the industry standard test for IT security professionals. The CISSP Prep Guide, Second Edition includes new, up-to-date CISSP review material that is relevant to the ISSEP, and provides comprehensive coverage of the ISSEP for those individuals who already have the CISSP credential. CISSP-exam experts, Ronald Krutz and Russell Dean Vines, have written an extremely focused revision to their bestseller that is essential reading if you’re taking the CISSP test for the first time. Krutz and Vines cover: Inside information regarding the new domains of the ISSEP that focus on technical knowledge such as ISSE processes and government regulations How the ISSEP complements the CISSP by comprehensively addressing the systems engineering side of information security The principal domains addressed by the ISSEP certification, including: systems security engineering, certification and accreditation, technical management, and U.S. Government information assurance regulations Feedback from more than 5,000 CISSP test takers


About the Author
RONALD L. KRUTZ, PhD, PE, CISSP, ISSEP, is a Senior Information Security Researcher for The Sytex Group, Inc. He was a faculty member in the Carnegie Mellon ECE Department and associate director of the Carnegie Mellon Research Institute. Dr. Krutz is also a Distinguished Special Lecturer in the Center for Forensic Computer Investigation at the University of New Haven and a consulting editor for a Wiley Infosec series.

RUSSELL DEAN VINES, CISSP, Security +, CCNA, MCSE, MCNE, is President and Founder of The RDV Group Inc., a New York— based security consulting services firm. He has been active in the prevention, detection, and remediation of security vulnerabilities for international corporations, including government, finance, and new media organizations, for many years. Mr. Vines is a specialist in cyber counterterrorism, and is the author of several bestselling information system security texts.

FROM THE PUBLISHER

The U.S. government has mandated that all contractors -- nearly all current CISSPs, and those yet to be certified as CISSPs -- attain the security engineering subject certification Information Systems Security Engineering Professional (ISSEP). The ISSEP targets specific job requirements or career directions, and is an extension of the Certified Information Systems Security Professional (CISSP) certification -- the industry standard test for IT security professionals. The CISSP Prep Guide, Second Edition includes new, up-to-date CISSP review material that is relevant to the ISSEP, and provides comprehensive coverage of the ISSEP for those individuals who already have the CISSP credential. CISSP-exam experts, Ronald Krutz and Russell Dean Vines, have written an extremely focused revision to their bestseller that is essential reading if you're taking the CISSP test for the first time.

SYNOPSIS

Pass the CISSP and ISSEP exams with this new edition of the bestselling prep guide!

The U.S. government has mandated that all contractors—nearly all current CISSPs, and those yet to be certified as CISSPs—attain the security engineering subject certification Information Systems Security Engineering Professional (ISSEP). The ISSEP targets specific job requirements or career directions, and is an extension of the Certified Information Systems Security Professional (CISSP) certification—the industry standard test for IT security professionals. The CISSP Prep Guide, Second Edition includes new, up-to-date CISSP review material that is relevant to the ISSEP, and provides comprehensive coverage of the ISSEP for those individuals who already have the CISSP credential.