CISSP Certified Information System Security Professional Exam Preparation Training

Instructor:

Edutech Skills

Category:

(ISC)2

Last Update:

July 24th, 2024

Ratings:

CISSP Certified Information System Security Professional Exam Preparation Training

About Course

CISSP Program Overview

The CISSP® certification is one of the most renowned achievements within the realm of information security. Our training course is meticulously crafted to endow participants with the technical skills and managerial prowess necessary to effectively design, build, and oversee an organization’s security framework, aligning with globally recognized information security norms. (ISC)² is a globally recognized nonprofit organization dedicated to advancing the information security field. The CISSP® was the first credential in information security to meet the stringent requirements of ISO/IEC Standard 17024. It is looked upon as an objective measure of excellence and a highly reputed standard of achievement.

Topics of Course

Domain 1 Security and Risk Management

1.1 Understand, adhere to, and promote professional ethics (2-4 items)
1.2 Understand and apply security concepts
1.3: Evaluate, apply, and sustain security governance principles
1.4 Understand legal, regulatory, and compliance issues that pertain to information security in a holistic context
1.5: Understand requirements for investigation types (i.e., administrative, criminal, civil, regulatory, and industry standards)
1.6: Develop, document, and implement security policy, standards, procedures, and guidelines
1.7: Identify, analyze, assess, prioritize, and implement Business Continuity (BC) requirements
1.8: Contribute to and enforce personnel security policies and procedures
1.9: Understand and apply risk management concepts
1.10: Understand and apply threat modeling concepts and methodologies.
1.11: Apply supply chain risk management (SCRM) concepts
1.12: Establish and maintain a security awareness, education, and training program

Domain 2 Asset Security

Domain 3 Security Architecture and Engineering

3.1 Research, implement, and manage engineering processes using secure design principles
3.2 Understand the fundamental concepts of security models (e.g., Biba, Star Model, Bell-LaPadula)
3.3 Select controls based on systems security requirements
3.4 Understand the security capabilities of Information Systems (IS) (e.g., memory protection, Trusted Platform Module (TPM), encryption/decryption)
3.5 Assess and mitigate the vulnerabilities of security architectures, designs, and solution elements
3.6 Select and determine cryptographic solutions
3.7 Understand methods of cryptanalytic attacks
3.8 Apply security principles to site and facility design
3.9 Design site and facility security controls
3.10: Manage the information system lifecycle

Domain 4 Communication and Network Security

Domain 5 Identity and Access Management (IAM)

Domain 6 Security Assessment and Testing

Domain 7 Security Operations

7.1 Understand and comply with investigations
7.2 Conduct logging and monitoring activities
7.3 Perform Configuration Management (CM) (e.g., provisioning, baselining, automation)
7.4 Apply foundational security operations concepts
7.5 Apply resource protection
7.6 Conduct incident management
7.7 Operate and maintain detective and preventative measures
7.8 Implement and support patch and vulnerability management
7.9 Understand and participate in change management processes
7.10 Implement recovery strategies
7.11 Implement Disaster Recovery (DR) processes
7.12 Test Disaster Recovery Plans (DRP)
7.13 Participate in Business Continuity (BC) planning and exercises
7.14 Implement and manage physical security
7.15 Address personnel safety and security concerns

Domain 8 Software Development Security

Student Ratings & Reviews

No Review Yet

Your Instructor

Edutech Skills

Share This Course

Chief Information Security Officer
Chief Information Officer
Director of Security
IT Director/Manager
Security Systems Engineer
Security Analyst
Security Manager
Security Auditor
Security Architect
Security Consultant
Network Architect
To apply for the CISSP® certification, you need to:
Have a minimum of 5 years of cumulative paid full-time work experience in two or more of the 8 domains of the (ISC)² CISSP® Common Body of Knowledge (CBK).
A one-year experience waiver can be earned with a 4-year college degree, regional equivalent, or additional credential from the (ISC)² approved list.

CISSP Certified Information System Security Professional Exam Preparation Training

CISSP Certified Information System Security Professional Exam Preparation Training

About Course

Topics of Course

Domain 1 Security and Risk Management

1.1 Understand, adhere to, and promote professional ethics (2-4 items)

1.2 Understand and apply security concepts

1.3: Evaluate, apply, and sustain security governance principles

1.4 Understand legal, regulatory, and compliance issues that pertain to information security in a holistic context

1.5: Understand requirements for investigation types (i.e., administrative, criminal, civil, regulatory, and industry standards)

1.6: Develop, document, and implement security policy, standards, procedures, and guidelines

1.7: Identify, analyze, assess, prioritize, and implement Business Continuity (BC) requirements

1.8: Contribute to and enforce personnel security policies and procedures

1.9: Understand and apply risk management concepts

1.10: Understand and apply threat modeling concepts and methodologies.

1.11: Apply supply chain risk management (SCRM) concepts

1.12: Establish and maintain a security awareness, education, and training program

Domain 2 Asset Security

2.1 Identify and classify information and assets

2.2 Establish information and asset handling requirements

2.3 Provision information and assets securely

2.4 Manage data lifecycle

2.5 Ensure appropriate asset retention (e.g., End-of-Life (EOL), End-of-Support (EOS))

2.6 Determine data security controls and compliance requirements

Domain 3 Security Architecture and Engineering

3.1 Research, implement, and manage engineering processes using secure design principles

3.2 Understand the fundamental concepts of security models (e.g., Biba, Star Model, Bell-LaPadula)

3.3 Select controls based on systems security requirements

3.4 Understand the security capabilities of Information Systems (IS) (e.g., memory protection, Trusted Platform Module (TPM), encryption/decryption)

3.5 Assess and mitigate the vulnerabilities of security architectures, designs, and solution elements

3.6 Select and determine cryptographic solutions

3.7 Understand methods of cryptanalytic attacks

3.8 Apply security principles to site and facility design

3.9 Design site and facility security controls

3.10: Manage the information system lifecycle

Domain 4 Communication and Network Security

4.1 Assess and implement secure design principles in network architectures

4.2: Secure network components

4.3: Implement secure communication channels according to design

Domain 5 Identity and Access Management (IAM)

5.1 Control physical and logical access to assets

5.2 Design identification and authentication strategy (e.g., people, devices, and services)

5.3 Federated identity with a third-party service

5.4 Implement and manage authorization mechanisms

5.5 Manage the identity and access provisioning lifecycle

5.6 Implement authentication systems

Domain 6 Security Assessment and Testing

6.1 Design and validate assessment, test, and audit strategies

6.2 Conduct security control testing

6.3 Collect security process data (e.g., technical and administrative)

6.4 Analyze test output and generate a report

6.5 Conduct or facilitate security audits

Domain 7 Security Operations

7.1 Understand and comply with investigations

7.2 Conduct logging and monitoring activities

7.3 Perform Configuration Management (CM) (e.g., provisioning, baselining, automation)

7.4 Apply foundational security operations concepts

7.5 Apply resource protection

7.6 Conduct incident management

7.7 Operate and maintain detective and preventative measures

7.8 Implement and support patch and vulnerability management

7.9 Understand and participate in change management processes

7.10 Implement recovery strategies

7.11 Implement Disaster Recovery (DR) processes

7.12 Test Disaster Recovery Plans (DRP)

7.13 Participate in Business Continuity (BC) planning and exercises

7.14 Implement and manage physical security

7.15 Address personnel safety and security concerns

Domain 8 Software Development Security

8.1 Understand and integrate security in the Software Development Life Cycle (SDLC)

8.2 Identify and apply security controls in software development ecosystems

8.3 Assess the effectiveness of software security

8.4 Assess the security impact of acquired software

8.5 Define and apply secure coding guidelines and standards

Student Ratings & Reviews

Your Instructor

Edutech Skills

Material Includes

Requirements

Material Includes

Subscribe to Our Newsletter
for Latest Update