CISSP Domain 8 Review / Mind Map (1 of 2) | Secure Software Development
Рет қаралды 72,666
Күн бұрынReview of the major Secure Software Development concepts and terms, and how they interrelate, to help you review, guide your studies, and help you pass the CISSP exam.
This MindMap review covers:
00:00 Intro
00:29 Overview
01:04 Bake in Security
01:26 SLC
01:47 SDLC
02:35 Development methodologies
04:10 SecDevOps
05:30 Canary deployments
07:21 Maturity models
08:18 APIs
09:01 Code obfuscation
09:52 Acquiring software
10:44 Buffer overflows
Other MindMaps:
Domain 1
Security & Risk Management: • CISSP Domain 1 Review ...
Domain 2
Asset Classification: • CISSP Domain 2 Review ...
Privacy: • CISSP Domain 2 Review ...
Domain 3
Models and Frameworks: • CISSP Domain 3 Review ...
Evaluation Criteria: • CISSP Domain 3 Review ...
Trusted Computing Base: • CISSP Domain 3 Review ...
Vulnerabilities in Systems: • CISSP Domain 3 Review ...
Cloud: • CISSP Domain 3 Review ...
Cryptography: • CISSP Domain 3 Review ...
Digital Certificates, Digital Signatures & PKI: • CISSP Domain 3 Review ...
Cryptanalysis: • CISSP Domain 3 Review ...
Physical Security: • CISSP Domain 3 Review ...
Domain 5
Access Control Overview: • CISSP Domain 5 Review ...
Single Sing-on & Federated Access: • CISSP Domain 5 Review ...
Domain 6
Security Assessment and Testing Overview: • CISSP Domain 6 Review ...
Vulnerability Assessment and Penetration Testing: • CISSP Domain 6 Review ...
Logging & Monitoring: • CISSP Domain 6 Review ...
Domain 7
Investigations: • CISSP Domain 7 Review ...
Incident Response: • CISSP Domain 7 Review ...
Malware: • CISSP Domain 7 Review ...
Patching & Change Management: • CISSP Domain 7 Review ...
Recovery Strategies: • CISSP Domain 7 Review ...
Business Continuity Management (BCM): • CISSP Domain 7 Review ...
Domain 8
Secure Software Development: • CISSP Domain 8 Review ...
Databases: • CISSP Domain 8 Review ...
CISSP Master Instructor, John Berti: / jberti
Visuals, narration and CISSP Master Instructor, Rob Witcher: / robwitcher
Video editing by Nick: threntinfo@gmail.com
@destcert 2 жыл бұрын
Our CISSP MasterClass includes your own personal CISSP mentor who will guide you to confidently passing the CISSP exam: destcert.com/CISSP
@ahmedcmc 3 жыл бұрын
All MindMap CISSP Videos are best free preparations for the Exam. Easy to digest and deliver the concept much better other than dry books.. Thanks a lot Rob for great Contribution to the Info Sec community. We really appreciate your great Job..
@dru3266 3 жыл бұрын
This is the closest I have found to CISSP study ASMR. I love and appreciate it
@animeshmusic 3 жыл бұрын
I sure hope you’re a professor because you have an uncanny ability to explain complex concepts at a simple level! The visuals help a ton! And the organization of concepts is so nice!
@destcert 3 жыл бұрын
That's lovely to hear. Thanks! And yes, my day job is teaching CISSP courses :)
@ksaholy 3 жыл бұрын
About Waterfall methedology, sybex book mentioned "the modern waterfall model does allow development to return to the previous phase to correct defects discovered during the subsequent phase. This is often known as the feedback loop characteristic of the waterfall model." Thank you for your great efforts.
@louhablas8073 Жыл бұрын
Yes, the video is referring to the traditional waterfall model, which does not allow a return to the previous phase. As you noted, the modern/modified waterfall DOES allow return to a previous phase.
@odynjoku3618 3 жыл бұрын
Thank you for putting these together. Very well laid out.
@ganeshchavan9290 3 жыл бұрын
Hi rob, I glad to inform today I provisionally passed cissp exam. It's amazing this mind map videos for clearing my exam. As u told " hi I am rob witcher today going to help u pass cissp exam..." That's goes worked on my journey. Thank you for amazing videos 🙏🙏🙏
@destcert 3 жыл бұрын
Congratulations Ganesh! Well done passing the CISSP exam! Thanks so much for letting me know. It's great to hear these videos are helping people learn and become better security professionals!
@fahimm3069 Жыл бұрын
Great videos Rob! Very clearly and brief to understand. thank you!
@surajrayamajhi6811 3 жыл бұрын
This is very helpful. Thank you for putting in so much effort.
@Hawk74 3 жыл бұрын
You've got some outstanding videos! I appreciate your work and sharing your knowledge, thank you.
@destcert 3 жыл бұрын
Thanks! My pleasure!
@nickybesters Жыл бұрын
Very concise and valuable. This ties it all together, I've been through countless hours of content which go into a lot of detail so this was so helpful in helping to see the bigger picture. Thanks, Rob 👍
@vasanthpaths7157 3 жыл бұрын
Perfect snapshot! Thank you.
@deckydoherty 3 жыл бұрын
These are an excellent resource.
@teewhy0700 3 жыл бұрын
The waterfall model was one of the first comprehensive attempts to model the software development process while taking into account the necessity of returning to previous phases to correct system faults. However, one of the major criticisms of this model is that it allows the developers to step back only one phase in the process. It does not make provisions for the discovery of errors at a later phase in the development cycle.
@ambitecturous4741 2 жыл бұрын
"Life-by-Powerpoint." Mr. Witcher, you've obviously put a lot of thought and care into selecting memorable visuals. 😉
@waisahmadi2332 3 жыл бұрын
very nicely summarized.
@udhay.msundaram3625 2 жыл бұрын
Hello Rob , thanks for this wonderful work for society this really helped me to pass cissp exam . I cleared it just 2 days before Thankyou for ur efforts .
@estrategiaygestiondecibers1673 3 жыл бұрын
Gracias por estas explicaciones
@00luismartinez00 3 жыл бұрын
This presentation it's really helpful to add up to my current CISSP studies. Keep up the good work!
@HassanAli-bw2hh Жыл бұрын
amazing vedio Thanks
@bipi_S 4 ай бұрын
thanks
@AhlanWaSahlann 3 жыл бұрын
awesome explanations, waiting for more videos..
@destcert 3 жыл бұрын
Working on them!
@MrRajeshpon 3 жыл бұрын
Well detailed video to refresh the topic before exams
@destcert 3 жыл бұрын
All the best in your studies! Let me know when you pass the exam 😁
@jonathanmcneill4993 4 жыл бұрын
I've read the McGraw Hill book on the CISSP. I've got the Sybex official ISC2 book that I'm working on now. I have not found any mention of the representational state transfer (REST) API. Thank you! This is why it is so important to use multiple sources when studying for this exam!!
@destcert 4 жыл бұрын
Indeed. The exam is constantly evolving!
@RobFire3 4 жыл бұрын
Know your API's: REST & SOAP.
@MegaJusttosee 4 жыл бұрын
REST and SOAP are very important, buddy.
@strcelrau 3 жыл бұрын
Waterfall is presented in the OSG with the feedback loop. In that case water does go up
@tragicmouse1 3 жыл бұрын
Thank you for your work. I am attempting the exam soon. But I have a question, in your video, it was mentioned that the Development step is where the code is written, and there are models for it i.e waterfall, agile, spiral, devops etc, but in these methods, they have their own design, requirement gathering, testing, operations and maintenance phase; are these steps only looping in the Development stage of the SLC / SDLC? I can't connect the Waterfall or Agile phases, when out of Development stage is the Testing stage, is the SLC/SDLC testing stage the test of the entire system? Or the Waterfall stage actually spills out and is not a nested loop? I hope my question makes sense. Thank you again.
@mohamedelbaz9288 2 жыл бұрын
The info is great. Just wanna say that you speak like Teal Swan :)
@destcert 2 жыл бұрын
Thank you! :)
@AGRuwan 3 жыл бұрын
Pls do video for SAML like kerberoes
@TheTCPTalk 4 жыл бұрын
Hey I can't find domain 3 in your videos list..did you skip it?
@destcert 4 жыл бұрын
I'm working my way towards it. Next up is Domain 2, then 3, and then 4. I'll be starting into the 9 videos I have planned for Domain 3 in a couple of weeks!
@Telekine5i5 3 ай бұрын
can we do a MIND MAP for CSSLP please ?
@tiphotisted 3 жыл бұрын
In waterfall you can go back one step
@strcelrau 3 жыл бұрын
2.0
@ekon06 12 күн бұрын
I like this topic but its quite heavy
@hardikmaru3311 2 жыл бұрын
Devops is not a development methodology
@solsticespiral6423 3 жыл бұрын
*just an honest opinion* It's a bit dry but informative enough that I'm listening. I'm following CISSP reference guide as I go and that helps me pay attention. Good tho! TY
@robotron1236 7 ай бұрын
There are 8 CISSP domains and 5 of them do the exact same thing…
Destination Certification
Рет қаралды 53 М.
Braincatchers
Рет қаралды 14 МЛН
Super Italiano
Рет қаралды 4,5 МЛН
Destination Certification
Рет қаралды 51 М.
INFOSEC TRAIN
Рет қаралды 7 М.
Destination Certification
Рет қаралды 53 М.
Braincatchers
Рет қаралды 14 МЛН