1 - Security & Risk Management
Security Governance Principles Compliance Professional Ethics Security Documentation Risk Management Threat Modeling Business Continuity Plan Fundamentals Acquisition Strategy and Practice Personnel Security Policies Security Awareness and Training
2 - Asset Security
Asset Security Privacy Protection Asset RetentionData Security Controls Secure Data Handling
3 - Security Engineering
Security in the Engineering LifecycleSystem Component Security Security Models Controls and Countermeasures in Enterprise SecurityInformation System Security Capabilities Design and Architecture Vulnerability MitigationVulnerability Mitigation in Embedded, Mobile, and Web-Based SystemsCryptography ConceptsCryptography TechniquesSite and Facility Design for Physical SecurityPhysical Security Implementation in Sites and Facilities
4 - Communications and Network Security
Network Protocol Security Network Components Security Communication Channel Security Network Attack Mitigation
5 - Identity and Access Management
Physical and Logical Access Control Identification, Authentication, and Authorization Identity as a Service Authorization Mechanisms Access Control Attack Mitigation
6 - Security Assessment and Testing
System Security Control TestSoftware Security Control TestingSecurity Process Data Collection Audits
7 - Security Operations
Security Operations Concepts Physical Security Personnel Security Logging and Monitoring Preventative Measures Resource Provisioning and Protection Patch and Vulnerability Management Change Management Incident Response Investigations Disaster Recovery Planning Disaster Recovery Strategies Disaster Recovery Implementation
8 - Software Development Security
Security Principles in the System Lifecycle Security Principles in the Software Development Lifecycle Database Security in Software Development Security Controls in the Development Environment Software Security Effectiveness Assessment
Actual course outline may vary depending on offering center. Contact your sales representative for more information.
Who is it For?
This course is intended for experienced IT security-related practitioners, auditors, consultants, investigators, or instructors, including network or security analysts and engineers, network administrators, information security specialists, and risk management professionals, who are pursuing CISSP training and certification to acquire the credibility and mobility to advance within their current computer security careers or to migrate to a related career. Through the study of all eight CISSP Common Body of Knowledge (CBK) domains, students will validate their knowledge by meeting the necessary preparation requirements to qualify to sit for the CISSP certification exam. Additional CISSP certification requirements include a minimum of five years of direct professional work experience in two or more fields related to the eight CBK security domains, or a college degree and four years of experience.