CISSP - Security Assessment and Testing - Section 6.2
Conduct security control testing including vulnerability assessment, penetration testing, log reviews, code review, and breach attack simulations.
Conduct security control testing using vulnerability assessment, penetration testing, log reviews, code review, interface testing, and breach attack simulations to validate control effectiveness. Interpret test findings to distinguish confirmed vulnerabilities from false positives and prioritise remediation by risk.
vulnerability assessmentpenetration testingcode reviewinterface testingbreach attack simulation
More in this domain
Back to all Security Assessment and Testing objectives, or the CISSP cert hub.
Examworthy is not affiliated with or endorsed by (ISC)2. Original, blueprint-aligned practice material only.