CISSP: Security Operations Proficiency (Advanced Level)

  • 15m
  • 15 questions
The CISSP: Security Operations Proficiency benchmark will measure your ability to recognize key terms and concepts related to security operations concepts. You will be evaluated on security concepts for site and facility security, security operations, and business continuity planning. A learner who scores high on this benchmark demonstrates that they have the skills related to understanding key security operations terminology and concepts.

Topics covered

  • define core security concepts, such as need-to-know, least-privilege, job rotation, and service level agreements (SLAs)
  • define various backup storage strategies
  • describe business continuity planning and continuity of operations processes
  • describe how to implement patch management initiatives to adhere to security best practices
  • describe how to perform logging and monitoring activities to gather meaningful metrics and key risk indicators
  • describe security concerns, such as travel, security training and awareness, emergency management, and personal duress
  • develop and document a business impact analysis plan
  • identify how to understand and comply with investigations by collecting evidence, documenting, analysis, performing digital forensics, and gathering artifacts
  • implement controls to protect enterprise power systems
  • outline configuration management best practices
  • outline how to conduct change management
  • outline how to conduct different types of tests on disaster recovery plans, such as read-through, tabletop, walkthrough, simulation, parallel, and full interruption testing
  • outline how to implement various recovery strategies, like sites, processing, system resilience, high-availability, and fault tolerance
  • outline the incident response processes of detection, response, mitigation, reporting, recovery, remediation, and lessons learned
  • recognize enterprise vulnerability assessment tools, processes, and management