CISSP certification can give value-added resellers (VARs) and security consultants the credibility needed to gain an edge over competitors. Our CISSP Study Guide, created in partnership with security expert Shon Harris, can help you prepare for the CISSP exam. Shon Harris, CISSP, MCSE and president of

Requires Free Membership to View

Logical Security, an IT security consulting and training company, is the author of CISSP: All-in-One Exam Guide and creator of The Shon Harris CISSP Solution.

  Shon Harris  

 Podcast: Check out this podcast with Shon Harris, author of CISSP All-in-one Exam Guide. Shon tells us why anyone (including channel partners) would want to be CISSP certified and explains the 10 domains of the CISSP exam, as well as providing valuable tips for test day.

  The Domains  

The CISSP exam is made up of the 10 domains of the Common Body of Knowledge. For your convenience, we've packaged each domain with a number of SearchSecurityChannel.com resources plus a quiz from Shon Harris to test your knowledge.


   Domain #1: Telecommunications and Network Security: This part of the CISSP exam covers protocol stack models, network components and extension services, core technologies and more.


   Domain #2: Physical Security: This part of the CISSP exam covers facility management, perimeter security and more.


   Domain #3: Cryptography: This part of the CISSP exam covers encryption and other secure messaging.


   Domain #4: Operations: This part of the CISSP exam covers risk assessment and other security management topics.


   Domain #5: Access Control: This part of the CISSP exam covers the protection of critical system components with biometrics, authentication and more.


   Domain #6: Application Security: This part of the CISSP exam covers software architecture, programming concepts, data interface and more.


   Domain #7: Information Security and Risk Management: This part of the CISSP exam covers risk management, data classification and more.


   Domain #8: Security Architecture and Design: This part of the CISSP exam covers security models, operating systems and more.


   Domain #9: Law, Investigation and Ethics: This part of the CISSP exam covers digital forensics, regulatory compliance and more.


   Domain #10: Business Continuity: This part of the CISSP exam covers business continuity, disaster recovery and more.

This was first published in October 2010