OVERVIEW OF CHANGES OR THE LACK OF
The changes that are introduced are very much cosmetics and minor changes where action verbs such as Evaluate, Determine, Identify, Analyze, Adhere, and Prioritize have been introduced to better indicate what is expected from you as an Information Security Professional.
DOMAIN 1: SECURITY AND RISK MANAGEMENT (15% of the exam content)
As you will see below, there almost no change in content for this domain. There was some reformatting of the names of some of the bullets and that is about it.
Overall, I can honestly say there was at most 1% change within this domain.
DOMAIN 2: ASSET SECURITY (10% of the exam content)
As you will see below, there almost no change in content for this domain. There was some reformatting of the names of some of the bullets and that is about it.
I was glad to see that Cryptography was removed. However, Data Protection Methods has been added and of course, that will talk about cryptography used to protect your data. So in summary: No change just different names.
DOMAIN 3 – NEW DOMAIN NAME IS: Security Architecture and Engineering (13% of the exam content)
Hum… This change reminds me of the old Security Architecture and Design domain we had on the 2012 CBK®. As you can see History always repeats itself.
As you will see below, there almost no change in content for this domain. There was some reformatting of the names of some of the bullets and that is about it.
Topics such as the Internet of Things (IOT) and Cloud-Based systems were added to the description. Some of the other topics were removed from the list but were simply moved and kept on the list by combining them with other topics.
DOMAIN 4: Communications and Network Security (14% of the exam content)
As you will see below, there almost no change in content for this domain. There was some reformatting of the names of some of the bullets and that is about it.
A few items were removed. As you can see Cryptography was removed and like I have mentioned previously that makes senses considering it is covered in depth with other domains. It seems ISC2 is bundling all of the Crypto content in one major section.
Overall there was less than 1% of changes within this domain. Nothing significant.
DOMAIN 5: Identity and Access Management (IAM) (13% of the exam content)
The acronym (IAM) was added to the end of the domain name.
As you will see below, there almost no change in content for this domain. There was some reformatting of the names of some of the bullets and that is about it.
Six items were added to further clarify the existing content. Attribute-Based Access Control is a new topic that was added.
This is another domain with less than 1% of changes within the domain content. Nothing significant.
DOMAIN 6: Security Assessment and Testing (12% of the exam content)
As you will see below, there almost no change in content for this domain. There was some reformatting of the names of some of the bullets and a few items were added to further clarify what is the content. Overall, there was 0% of new content added to this domain.
DOMAIN 7: Security Operations (13% of the exam content)
As you will see below, there almost no change in content for this domain. There was some reformatting of the names of some of the bullets. As you will see a single entry was divided into multiple entries for more clarity. Subjects such as Industry Standards, Asset management, and Duress were added.
Overall, I can honestly say there is less than 1% of changes within this domain. Nothing significant.
DOMAIN 8: Software Development Security (10% of the exam content)
As you will see below, there is almost no change in content for this domain. There was some reformatting of the names of some of the bullets and that is about it. Overall, I can honestly say there was less than 1% of changes within this domain. Nothing significant.
Subscribe to get the latest videos: https://www.youtube.com/c/CyberassureHuntsville
FOLLOW ME:
Website: https://arecyber.com
Twitter: https://twitter.com/artofwar73
Facebook: @arecyberllc
Instagram: https://www.instagram.com/arecyberllc
Visualize Success and you will Succeed!
-~-~~-~~~-~~-~-
Please watch: “How To Pass The CISSP”
-~-~~-~~~-~~-~-
source
nice