This 5-day cybersecurity course (CISSP), will enhance your knowledge by addressing the essential elements of the eight domains that comprise the Common Body of Knowledge (CBK)® for information systems security professionals. The course takes a job-related approach to the security process and provides a framework to prepare for the CISSP (Certified Information Systems Security Professional) certification. By defining the eight security domains that make up the CBK, the course helps establish industry standards for information systems security professionals. The skills and knowledge you gain will help you master these domains, ensuring your credibility and success in the field. As the most esteemed and prestigious security certification, CISSP training is a benchmark for all IT professionals.
Course Outline
Lesson 1: Security and Risk Management
- Security Governance Principles
- Compliance
- Professional Ethics
- Security Documentation
- Risk Management
- Threat Modeling
- Business Continuity Plan Fundamentals
- Acquisition Strategy and Practice
- Personnel Security Policies
- Security Awareness and Training
Lesson 2: Asset Security
- Asset Classification
- Privacy Protection
- Asset Retention
- Data Security Controls
- Secure Data Handling
Lesson 3: Security Engineering
- Security in the Engineering Lifecycle
- System Component Security
- Security Models
- Controls and Countermeasures in Enterprise Security
- Information System Security Capabilities
- Design and Architecture Vulnerability Mitigation
- Vulnerability Mitigation in Embedded, Mobile, and Web-Based Systems
- Cryptography Concepts
- Cryptography Techniques
- Site and Facility Design for Physical Security
- Physical Security Implementation in Sites and Facilities
Lesson 4: Communications & Network Security
- Network Protocol Security
- Network Components Security
- Communication Channel Security
- Network Attack Mitigation
Lesson 5: Identity & Access Management
- Physical and Logical Access Control
- Identification, Authentication, and Authorization
- Identity as a Service
- Authorization Mechanisms
- Access Control Attack Mitigation
Lesson 6: Security Assessment & Testing
- System Security Control Testing
- Software Security Control Testing
- Security Process Data Collection
- Audits
Lesson 7: Security Operations
- Security Operations Concepts
- Physical Security
- Personnel Security
- Logging and Monitoring
- Preventive Measures
- Resource Provisioning and Protection
- Patch and Vulnerability Management
- Change Management
- Incident Response
- Investigations
- Disaster Recovery Planning
- Disaster Recovery Strategies
- Disaster Recovery Implementation
Lesson 8: Security in the Software Development Life Cycle
- Security Principles in the System Lifecycle
- Security Principles in the Software Development Lifecycle
- Database Security in Software Development
- Security Controls in the Development Environment
- Software Security Effectiveness Assessment