| | |  | CISSP | Home » » » » » CISSP Guide to Security Essentials | | | | | | | Product Promotions: | | | | | Description: | | CISSP GUIDE TO SECURITY ESSENTIALS CISSP Guide to Security Essentials provides readers with the tools and resources they need to develop a thorough understanding of the entire CISSP Certification Body of Knowledge. Using a variety of pedagogical features including study questions, case projects, and exercises, this book clearly and pointedly explains security basics. Coverage begins with an overview of information and business security today, security laws, and then progresses through the ten CISSP domains, including topics such as access control, cryptography and security architecture and design. With the demand for security professionals at an all-time high, whether you are a security professional in need of a reference, an IT professional with your sights on the CISSP certification, on a course instructor, CISSP GUIDE TO SECURITY ESSENTIALS CISSP Guide to Security Essentials has arrived just in time. | | | Product Details: | | | Author:
| Peter Gregory | | Paperback:
| 496 pages | | Publisher:
| Course Technology | | Publication Date:
| May 20, 2009 | | Language:
| English | | ISBN:
| 1435428196 | | Product Length:
| 9.2 inches | | Product Width:
| 7.4 inches | | Product Height:
| 1.2 inches | | Product Weight:
| 1.9 pounds | | Package Length:
| 9.1 inches | | Package Width:
| 7.4 inches | | Package Height:
| 1.2 inches | | Package Weight:
| 1.85 pounds | | Average Customer Rating:
|  based on 6 reviews |
| | | | Customer Reviews: | |
Average Customer Review:
 ( 6 customer reviews )
Write an online review and share your thoughts with other customers.
Most Helpful Customer Reviews
2 of 2 found the following review helpful:
 Excellent introduction to information securityJan 07, 2011
By Richard Leickly
Peter Gregory is a prolific author and well-known computer security professional who is also very active in the information security community. Peter wrote this book to address the current situation in information security, which is stated in the Introduction, as "There aren't enough good security professionals to go around". Information security is a broad field with many sub disciplines. Many professionals feel they should know more about security, but don't know where to start. Peter's book is an attempt to change that situation by providing the foundational materials that every security professional needs to know before undertaking advanced or specialized study. The book is suitable for self-study or as a classroom text. Each chapter has a summary, a glossary of key terms, review questions, hands-on projects, and ideas for case projects. For those interested in obtaining the CISSP, they will find this book a good place to start. The strength of this book lies in its organization and clarity. The book's ten chapters map to the ten CISSP Common Body of Knowledge Domains. Each chapter is broken into many subheadings, with an outline-style organization that clarifies each distinct topic. Acronyms are defined in the text and in the glossaries, which are presented in each chapter and at the end of the book. There are two appendices. One appendix provides summary outlines of the ten domains of CISSP security; the other reproduces the code of ethics of CISSP professionals. The Introduction reviews the steps needed to obtain CISSP certification and, together with the code of ethics, gives a good sense of the knowledge, behavior, and attitude necessary to succeed as a security professional. A CD-ROM containing practice questions for the CISSP exam is included. No single book can provide all you need to know to be a CISSP, but this is a good place to start.
1 of 1 found the following review helpful:
 Errors that Need FixingJan 26, 2012
By Ken
I've been unable to locate an answer key for any of the reviews questions provided at the end of the chapters. This is a slight annoyance as there are one or two questions where the correct answer is not apparent in the text. I suspect that this book is intended to be used in a college course, and in that case the answers are probably in the teacher's edition. For us non-college students, it would be nice to have a way to obtain the answers.
I've also noticed a rather obvious error in chapter five. On page 179 the book states that SHA-1 is "a robust message digest algorithm that has weakened somewhat. Developers considering using a hashing algorithm are advised to use MD5 instead." This statement is contrary to what I know about the popular hashing algorithms, and I believe it is actually the opposite that is true. There have been some demonstrations that have shown it is theoretically possible to cause collisions using MD5, and it is generally recommended that SHA-1 or SHA256 be used instead.
This error is a rather odd one to make, and I'd be interested to know how it made it into the book. Conversely, if this is not an error, then I would be very interested to know the author's reasoning for this statement.
I also noted some portions of the book, such as wording and a few diagrams, are exactly the same as Wikipedia articles. I'm not sure if the author is a Wikipedia contributor, or if material from Wikipedia was used in this book.
Overall, this appears to be a decent review of the material, and I think subsequent editions would easily be able to get four or even five stars out of me. It just needs a little more editing, and maybe a little more depth in some areas.
1 of 1 found the following review helpful:
Clear Concise Textbook and ReferenceJan 05, 2011
By J98103
"Janine"
This was an excellent textbook for our University of Washington Professional Certificate Program in Information Systems Security. It clearly and concisely overviews all ten domains on the CISSP exam. The well organized glossary makes it the perfect reference and checklist so InfoSec professionals can apply all ten domains in protecting their systems.
Janine Michelsons
UW Information Systems Security Program Graduate
1 of 1 found the following review helpful:
Excellent guide to the fieldJan 05, 2011
By Max deLaubenfels
This book is simply well written. Peter Gregory shares his wealth of experience in the field though this book, a well organized text written in plain language and with practical examples. We used this book in my Information Systems Security courses and I keep my copy close by. It is a good text for students new to the field and a launching point for preparing for CISSP certification (the end-of-chapter questions and projects are very helpful). It is a fabulous introduction to the field for anyone wanting to learn a technical perspective about Information Systems Security.
An excellent guide on information security.Dec 30, 2010
By A. O. Akinloye
"Kay"
This book is an excellent guide to information security, its langusge is simple, plain and easily understood. Its concepts are clearly understood with diagrams and easily understood language. Another thing I like about the book is that the information about the book is packed into a diminutive size of less than 550 pages. Each chapter has a summary of salient points and a list of important terms to note. I read this book for the Systems Security Certified Professional(SSCP) exam and I passed the exam.
I hereby encourage IT professionals who want to make an entrance into Information Security to buy this book, read it and use it to prepare for either the SSCP or the CISSP exam. You will definitely enjoy the book before and after the exam.
Peter Gregory has scored a winning goal on this one!
See all 6 customer reviews on Amazon.com
| | |
|
