This CISSP domain consists out of all aspects concering the evaluation and testing of security.
Services that are placed under this domain are related to the following subjects:
- Assessment and test strategies
- Security process data (e.g. management and operational controls)
- Security control testing
- Test outputs (e.g. automated, manual)
- Security architectures vulnerabilities