In the whole CISP knowledge architecture, * * * includes five knowledge categories: information security guarantee, information security technology, information security management, information security engineering and information security standards and regulations. Information Security Assurance The introduction of the framework, basic principles and practices of information security assurance is the basic knowledge that registered information security professionals need to master first. Information security technology mainly includes security technology mechanisms such as cryptography, access control, audit monitoring, basic security principles and practices at the levels of network, system software and application, as well as technical knowledge and practices related to information security attack and defense and software security development; Information security management mainly includes information security management system construction and information security risk management. Specific information security management measures are equivalent to information security-related management knowledge and practice. Information security engineering mainly includes engineering knowledge and practice related to information security; Information security standards and regulations mainly include information security related standards, laws and regulations, and ethics, which are the general basic knowledge that registered information security professionals need to master.
Free CISP learning materials and knowledge map: /CISP/XZL/N 125.html? fcode=h 1000026