Domain 1 - Security and Risk Management
This domain teaches the foundational principles of security, governance, compliance, and risk management. You’ll learn how to establish security policies, manage risk, and protect organizations through ethical and legal practices.
Introduction to Security Concepts & Principles
e
Security Governance & Management Practices
d
Compliance, Legal, and Regulatory Issues
3
Professional Ethics (ISC² Code of Ethics)
4
Security Policies, Standards, Procedures, & Guidelines
5
Risk Management Frameworks & Processes
6
Threat Modeling & Security Controls
7
Business Continuity (BC) & Disaster Recovery (DR) Basics
8
Security Awareness, Training & Education
9
Third-Party Risk Management
10
Security Documentation & Evidence Requirements
11