The Security and Risk Management domain of the
               Common Body of Knowledge (CBK) for the CISSP certification exam
               deals with many of the foundational elements of security solutions.
               These include elements essential to the design, implementation, and
               administration of security mechanisms. Additional elements of this
               domain are discussed in various chapters: Chapter 2, “Personal

               Security and Risk Management Concepts”; Chapter 3, “Business
               Continuity Planning”; Chapter 4, “Laws, Regulations, and
               Compliance”; and Chapter 19, “Investigations and Ethics.” Please be
               sure to review all of these chapters to have a complete perspective on
               the topics of this domain.