UsualSuspect7UsualSuspect7 Member Posts: 97 ■■■□□□□□□□
Hey Everyone, 

I have my exam tomorrow, i went through the sybex book and outlined all the ISO and NIST document, correct, discuss, and correct. Good Luck Everyone!

NIST 800-145:                  Cloud Computing Definition
NIST 800-53:                     Guidance Document ensuring all data in FED information System is Secure.
NIST SP-800-37:              Guide for Implementing Risk Management framework (RMF).

FIPS 140-2:                       NIST document that describes the process for accrediting and cryptosystem for use by the US federal goverment

ISO/IEC 15408:2009:       Standards for International security assurance for security claims by vendors.
ISO/IEC 27017:2015:       Standards for information security controls for cloud providers/cloud customers
ISO/IEC 27018:2019:       Standards for implementing techniques for process PII in cloud services.
ISO/IEC 27034-1:             Standards for Secure Application Development
ISO/IEC 27037:2012:       Standards for Collecting, identifying, and preserving digital evidence. 
ISO/IEC 27041:2015:       Standards for Incident Investigation
ISO/IEC 27042:2015:       Standards for Digital Evidence Analysis
ISO/IEC 27043:2015:       Standards for Incident Investigations Principles and Process
ISO/IEC 27050-3:2017:    Standards for Specific E-Discovery
ISO/IEC 27050-1:2016:    Standards for Overview of E-Discovery
ISO/IEC 31000:2018:       Standards for International focus on designing, implementing, and reviewing risk management process and practices.
CISSP, CCENT, CCNA R/S, CCNA Cyber OPs, Security+, CySA+, PenTest+, Network+, Microsoft AZ-900, InsightVM CA
Sign In or Register to comment.