M-209 cipher machine.

CISSP Domain 7 — Security Operations

Domain 7 — Security Operations

Know the "data lifecycle" phases, really a sequence and not a cycle:
Create
Store
Use
Share
Archive
Destroy

Legal

Distinguish between:

SIEM or Security Information and Event Management

Backups

BC / DR Concepts

"About twice a year we have a major storage failure. We make backups nightly starting at 1 AM. Our goal is to get data restored within 1 hour. If we went 8 hours without data, our company would financially suffer. Over the past year, our data recovery process has averaged 41 minutes. While recovering one file system, we need at least 80% normal performance on the other unaffected file systems." For that story:

RAID, SAN, and NAS

There's far more to RAID in reality, all you need to know is:

Storage Area Network or SAN: Typically use Fibre Channel and iSCSI.

Network-Attached Storage or NAS: Typically an NFS server.

BC/DR Testing

In order of increased complexity, cost, intrusiveness, and risk:

  1. Read-Through / Tabletop
  2. Walk-Through
  3. Simulation
  4. Parallel
  5. Full Interruption