DOMAIN 1.0 SECURITY AND RISK MANAGEMENT
DOMAIN 2.0 ASSET SECURITY
DOMAIN 3.0 SECURITY ARCHITECTURE AND ENGINEERING
DOMAIN 4.0 COMMUNICATION AND NETWORK SECURITY
DOMAIN 5.0 IDENTITY AND ACCESS MANAGEMENT (IAM)
DOMAIN 6.0 SECURITY ASSESSMENT AND TESTING
DOMAIN 7.0 SECURITY OPERATIONS
DOMAIN 8.0 SOFTWARE DEVELOPMENT SECURITY
1.0 Attacks, Threats, and Vulnerabilities
2.0 Architecture and Design
3.0 Implementation
4.0 Operations and Incident Response
5.0 Governance, Risk, and Compliance
