Practice exams (25 Questions) | Full length exams (90 Questions) |
---|---|
Exam 1 - 25Q | Exam 5 - 90Q |
Exam 2 - 25Q | Exam 6 - 90Q |
Exam 3 - 25Q | Exam 7 - 90Q |
Exam 4 - 25Q |
1. General Security Concepts (12%) |
---|
1.1 Security controls |
1.2 Security concepts |
1.3 Change management |
1.4 Cryptographic solutions |
2. Threats, Vulnerabilities and Mitigations (22%) |
---|
2.1 Threat actors |
2.2 Threat vectors |
2.3 Types of vulnerabilities |
2.4 Indicators of malicious activity |
2.5 Mitigation techniques |
3. Security Architecture (18%) |
---|
3.1 Architecture models |
3.2 Security principles |
3.3 Strategies to protect data |
3.4 Resilience and recovery |
5. Security Program Management and Oversight (20%) |
---|
5.1 Security governance |
5.2 Risk management process |
5.3 Third-party risk assessment |
5.4 Security compiance |
5.5 Audits and assessments |
5.6 Security awareness |