CISSP Mastery
Back to Security Architecture and Engineering
3.1 ~40 min

Manage engineering processes using secure design principles

Overview

Know each principle and be able to recognize it in a scenario: least privilege, defense in depth, secure defaults, fail securely, separation of duties, zero trust vs trust-but-verify, privacy by design, shared responsibility, and SASE.

Key topics to master

  • Threat modeling; keep it simple and small
  • Least privilege; defense in depth
  • Secure defaults; fail securely
  • Segregation of Duties (SoD)
  • Zero trust / trust but verify
  • Privacy by design; shared responsibility
  • Secure Access Service Edge (SASE)
Read moreOpen the study library Knowledge checkPractice Domain 3 questions
Previous · 2.6Determine data security controls and compliance requirementsNext · 3.2Fundamental concepts of security models