CISSP encompasses various topics related to information security. The final exam is based on the Common Body of Knowledge (CBK), which is a taxonomy or collection of relevant subjects for information security professionals worldwide. The CBK provides a broad framework of terms and principles that allows experts worldwide to examine, discuss, and solve situations related to a shared understanding of information security.

To obtain an internationally recognized CISSP certification, you need to correctly answer exam questions related to 8 information security concepts. Some of these areas include:

1. Security and Risk Management
2. Asset Security
3. Security Architecture and Engineering
4. Communication and Network Security
5. Identity and Access Management
6. Security Assessment and Testing
7. Security Operations
8. Software Development Security

These domains are used to measure the knowledge and competence required for a CISSP certification.