This course will expand upon your knowledge by addressing the essential elements of the eight domains that comprise a Common Body of Knowledge (CBK)® for information systems security professionals. The course offers a job-related approach to the security process, while providing a framework to prepare for CISSP certification.By defining eight security domains that comprise a CBK, industry standards for the information systems security professional have been established. The skills and knowledge you gain in this course will help you master the eight CISSP domains and ensure your credibility and success within the information systems security field
Audience: This course is intended for experienced IT security-related practitioners, auditors, consultants, investigators, or instructors, including network or security analysts and engineers, network administrators, information security specialists, and risk management professionals, who are pursuing CISSP training and certification to acquire the credibility and mobility to advance within their current computer security careers or to migrate to a related career. Through the study of all eight CISSP Common Body of Knowledge (CBK) domains, students will validate their knowledge by meeting the necessary preparation requirements to qualify to sit for the CISSP certification exam. Additional CISSP certification requirements include a minimum of five years of direct professional work experience in two or more fields related to the eight CBK security domains, or a college degree and four years of experience.
Event Number: CISSP
Available Languages: English (US),English (UK),French (Canada),German (Germany),Russian (Russia),Japanese (Japan),Chinese (Simplified),Italian (Italy),Portuguese (Brazil),French (France),Spanish (Latin America),Spanish (Spain),Portuguese (Portugal),Thai (Thailand),Dutch (The Netherlands)
In this course, you will identify and reinforce the major security subjects from the eight domains of the (ISC)2 CISSP CBK. You will:
Analyze components of the Security and Risk Management domain.
Analyze components of the Asset Security domain. Analyze components of the Security Engineering domain.
Analyze components of the Communications and Network Security domain.
Analyze components of the Identity and Access Management domain.
Analyze components of the Security Assessment and Testing domain.
Analyze components of the Security Operations domain.
Analyze components of the Software Development Security domain.
1 - Security and Risk Management
◾Security Governance Principles
◾Business Continuity Plan Fundamentals
◾Acquisition Strategy and Practice
◾Personnel Security Policies
◾Security Awareness and Training
2 - Asset Security
◾Data Security Controls
◾Secure Data Handling
3 - Security Engineering
◾Security in the Engineering Lifecycle
◾System Component Security
◾Controls and Countermeasures in Enterprise Security
◾Information System Security Capabilities
◾Design and Architecture Vulnerability Mitigation
◾Vulnerability Mitigation in Embedded, Mobile, and Web-Based Systems
◾Site and Facility Design for Physical Security
◾Physical Security Implementation in Sites and Facilities
4 - Communications & Network Security
◾Network Protocol Security
◾Network Components Security
◾Communication Channel Security
◾Network Attack Mitigation
5 - Identity & Access Management
◾Physical and Logical Access Control
◾Identification, Authentication, and Authorization
◾Identity as a Service
◾Access Control Attack Mitigation
6 - Security Assessment & Testing
◾System Security Control Testing
◾Software Security Control Testing
◾Security Process Data Collection
7 - Security Operations
◾Security Operations Concepts
◾Logging and Monitoring
◾Resource Provisioning and Protection
◾Patch and Vulnerability Management
◾Disaster Recovery Planning
◾Disaster Recovery Strategies
◾Disaster Recovery Implementation
8 - Security in the Software Development Life Cycle
◾Security Principles in the System Lifecycle
◾Security Principles in the Software Development Lifecycle
◾Database Security in Software Development
◾Security Controls in the Development Environment
◾Software Security Effectiveness Assessment