Page 307 - (ISC)² CISSP Certified Information Systems Security Professional Official Study Guide
P. 307

Chapter 5

               Protecting Security of Assets


               THE CISSP EXAM TOPICS COVERED IN THIS CHAPTER

               INCLUDE:

                      Domain 2: Asset Security

                        2.1 Identify and classify information and assets

                             2.1.1 Data classification

                             2.1.2 Asset classification

                        2.2 Determine and maintain information and asset ownership

                        2.3 Protect privacy

                             2.3.1 Data owners

                             2.3.2 Data processors

                             2.3.3 Data remanence


                             2.3.4 Collection limitation

                        2.4 Ensure appropriate asset retention

                        2.5 Determine data security controls

                             2.5.1 Understand data states

                             2.5.2 Scoping and tailoring

                             2.5.3 Standards selection

                             2.5.4 Data protection methods

                        2.6 Establish information and asset handling requirements
   302   303   304   305   306   307   308   309   310   311   312