Certified Information Systems Security Professional (CISSP)
5 DAYS
Description:
CISSP is the premier certification for today’s information systems security professional. It remains the premier certification because the sponsoring organization, the International Information Systems Security Certification Consortium, Inc. (ISC)2 ®, regularly updates the test by using subject matter experts (SMEs) to make sure the material and the questions are relevant in today’s security environment. By defining eight security domains that comprise a CBK, industry standards for the information systems security professional have been established. The skills and knowledge you gain in this course will help you master the eight CISSP domains and ensure your credibility and success within the information systems security field.
SECURITY AND RISK MANAGEMENT
Topic A: Security Concepts
Topic B: Security Governance Principles
Topic C: Compliance
Topic D: Professional Ethics
Topic E: Security Documentation
Topic F: Risk Management
Topic G: Threat Modeling
Topic H: Risk Response
Topic I: Business Continuity Plan Fundamentals
Topic J: Acquisition Strategy and Practice
Topic K: Personnel Security Policies
Topic L: Security Awareness and Training
ASSET SECURITY
Topic A: Asset Classification
Topic B: Secure Data Handling
Topic C: Resource Provisioning and Protection
Topic D: Manage Data Lifecycle
Topic E: Asset Retention
Topic F: Data Security Control
SECURITY ARCHITECTURE AND ENGINEERING
Topic A: Security in the Engineering Lifecycle
Topic B: System Component Security
Topic C: Security Models
Topic D: Controls and Countermeasures in Enterprise Security
Topic E: Information System Security Capabilities
Topic F: Design and Architecture Vulnerability Mitigation
Topic G: Vulnerability Mitigation in Emerging Technologies
Topic H: Cryptography Concepts
Topic I: Cryptography Techniques
Topic J: Cryptanalytic Attacks
Topic K: Site and Facility Design for Physical Security
Topic L: Physical Security Implementation in Sites and Facilities
COMMUNICATION AND NETWORK SECURITY
Topic A: Network Protocol Security
Topic B: Network Components Security
Topic C: Communication Channel Security
Topic D: Network Attack Mitigation
IDENTITY AND ACCESS MANAGEMENT
Topic A: Physical and Logical Access Control
Topic B: Identification and Authentication
Topic C: Identity as a Service
Topic D: Authorization Mechanisms
Topic E: Access Control Attack Mitigation
SECURITY ASSESSMENT AND TESTING
Topic A: System Security Control Testing
Topic B: Software Security Control Testing
Topic C: Security Process Data Collection
Topic D: Audits
SECURITY OPERATIONS
Topic A: Security Operations Concepts
Topic B: Change Management
Topic C: Physical Security
Topic D: Personnel Security
Topic E: Detective and Preventive Measures
Topic F: Patch and Vulnerability Management
Topic G: Logging and Monitoring
Topic H: Incident Response
Topic I: Investigations
Topic J: Disaster Recovery Planning
Topic K: Disaster Recovery Strategies
Topic L: Disaster Recovery Implementation
SOFTWARE DEVELOPMENT SECURITY
Topic A: Security Principles in the System Lifecycle
Topic B: Security Principles in the Software Development Lifecycle
Topic C: Security Controls in the Development Environment
Topic D: Database Security in Software Development
Topic E: Software Security Effectiveness Assessment