Layered Security — CISSP Practice Questions
Layered security is closely related to defense in depth and refers to the deployment of multiple security controls at different tiers of an environment, such as perimeter, network, host, application, and data layers. The CISSP exam uses this concept to assess whether candidates can design or evaluate architectures where an attacker must defeat several independent barriers to reach sensitive assets. Each layer should address a distinct threat vector, and no single layer is assumed to be impenetrable. Understanding layered security also involves recognizing that controls at one layer may compensate for weaknesses at another, which is a common basis for compensating control decisions.
Free questions on layered security
What does the concept of "defense in depth" refer to?
Free question · easy · full answer + explanation
What is Defense in Depth?
Free question · medium · full answer + explanation
More layered security questions in the full bank
- What is the primary benefit of Defense in Depth? Unlock answer & explanation →
- In secure coding, what does the principle of defense in depth involve? Unlock answer & explanation →
- What is defense in depth? Unlock answer & explanation →