Certified Information Systems Security Professional (CISSP)®
Course length: 3.0 day(s). 2 Days of intensive instruction over one weekend, followed by 5 day of independent student preparation concluding with 1 day of test honing skills class.
Course Description:
The CISSP 3 day course is aimed at preparing security professionals for the (ISC)2™ CISSP exam. This grueling exam has 250 questions for which the allotted time is 6 hours! The test topics for the exam are derived form the (ISC)2™ common body of knowledge. Unfortunately, what is already an unnecessary marathon off an exam is made even harder by the examiners looking for the “best answer” as opposed to what we are more used to i.e. “the correct answer”! Here is where a combination of theory and strategy will come in to play.
Our prep course is designed around a simple thought process, “understanding the anatomy of the question and its dissection”. Through out the course the instructor will be sharing strategies for dissecting the anatomy of the question to get to the best answer. By separating the minutia from the problem, eliminating the unlikely and narrowing down to the probable students will greatly increase their ability to sore higher and hence pass the exam.
(ISC)2™ expects candidates to have a broad range of skills across security policy development and management, as well as technical understanding of a wide range of security controls across all disciplines within Information Security. The goal off our program is to help prepare candidates for the exam by mastering this huge range of knowledge.
Target Student:
This course is intended for experienced IT security-related practitioners, auditors, consultants, investigators, or instructors, including network or security analysts and engineers, network administrators, information security specialists, and risk management professionals, who are pursuing CISSP training and certification to acquire the credibility and mobility to advance within their current computer security careers or to migrate to a related career. Through the study of all 10 CISSP CBK domains, students will validate their knowledge by meeting the necessary preparation requirements to qualify to sit for the CISSP certification exam. Additional CISSP certification requirements include a minimum of five years of direct professional work experience in one or more fields related to the 10 CBK security domains, or a college degree and four years of experience.
Course Materials:
Students will be provided handouts covering the presented slides as well as simulated test questions and the recommended book for the course will also be provided;
Official (ISC)2 Guide to the CISSP CBK, Second Edition
Editor(s): Harold F. Tipton, HFT Associates, Villa Park, California, USA; Kevin Henry, North Gower, Canada
Series: (ISC)2 Press
Price: $69.95
Cat. #: K10480
ISBN: 9781439809594
ISBN 10: 1439809593
Publication Date: December 22, 2009
Number of Pages: 965
Publisher: Auerbach Publications Format: Hardcover Year: 2009
Delivery Method: Instructor led, paced, classroom-delivery learning model with structured hands-on activities.
Course Description
The CISSP® program provides intensive training on the following ten domains:
· Access Control Systems & Methodology; Requires that the candidate understand the concepts, systems and methodologies involved in granting and restricting access to resources.
· Applications & Systems Development; Requires that the candidate understand the security controls found in systems and application software, such as the affects of malicious code on distributed application environments and the security controls involved in data warehousing.
· Business Continuity & Disaster Recovery Planning; Involves the preparation, planning and updating of specific actions to protect mission critical services and data.
· Cryptography; This domain addresses the concepts, means and methods of encrypting data to ensure authenticity, integrity, and confidentiality.
· Law, Investigation & Ethics; This domain addresses computer crime laws, methods for gathering evidence, and related ethical issues.
· Operations Security (Computer); This domain identifies the controls over hardware, media and the operators of these resources, and issues related to auditing and monitoring.
· Physical Security; This domain involves the threats, vulnerabilities and countermeasures utilized to physically protect enterprises resources.
· Security Architecture & Models; This domain involves the design, concepts, standards, and implementation security measures that ensure the availability, integrity and confidentiality of operating systems, applications and equipment.
· Security Management Practices; Involves the identification of a company’s information assets, and the development, documentation and implementation of security policies.
· Telecommunications & Network Security; This domain involves designing and planning voice and data infrastructure and communications with a security strategy that includes preventative, detective and corrective measures.