-
Understanding and Applying Confidentiality, Integrity, and Availability
-
Assessing and Applying Security Governance Principles
-
Determining Compliance Requirements
-
Understanding Information Security Laws and Regulatory Issues in a Global Context
-
Understanding, Adhering to, and Promoting Professional Ethics
-
Developing and Implementing Information Security Policies, Standards, Procedures, and Guidelines
-
Identifying, Analyzing, and Distinguishing Continuity of Operations Requirements
-
Establishing and Enforcing Personnel Security Policies and Procedures
-
Understanding and Applying Risk Management
-
Understanding and Applying Threat Modeling
-
Supply Chain Risk Management
-
Establishing and Maintaining Information Security Awareness, Education, and Training