In this course, you will gain the knowledge and skills needed to successfully pass the CISSP Training, take the certification exam and become a Certified Information Systems Security Professional. You will learn how to:
- Manage security and risk
- Secure assets
- Design security framework
- Secure communication and networks
- Securely develop software
Official (ISC)²® CISSP Training and Certification Prep (with Exam Voucher) Delivery Methods
CISSP Training Benefits
Learn from official (ISC)²® real-world instructors with a preferred official partner using (ISC)² course materials
Get practical insights into the 8 domains of the CISSP CBK (Common Body of Knowledge)
Create a test study strategy by assessing strengths and weaknesses
Gain access to hundreds of exam prep questions
Receive a voucher for the CISSP certification exam included with the course tuition
Continue learning and face new challenges with after-course one-on-one instructor coaching
CISSP Training Outline
In this module, you will learn how to:
- Understand, adhere to, and promote professional ethics
- Understand and apply security concepts
- Evaluate and apply security governance principles
- Determine compliance and other requirements
- Understand legal and regulatory issues that pertain to information security in a holistic context
- Understand requirements for investigation types (i.e., administrative, criminal, civil, regulatory, industry standards)
- Develop, document, and implement security policy, standards, procedures, and guidelines
- Identify, analyze, and prioritize Business Continuity (BC) requirements
- Contribute to and enforce personnel security policies and procedures
- Understand and apply risk management concepts
- Understand and apply threat modeling concepts and methodologies
- Apply Supply Chain Risk Management (SCRM) concepts
- Establish and maintain a security awareness, education, and training program
In this module, you will learn how to:
- Identify and classify information and assets
- Establish information and asset handling requirements
- Provision resources securely
- Manage data lifecycle
- Ensure appropriate asset retention (e.g., End-of-Life (EOL), End-of-Support (EOS))
- Determine data security controls and compliance requirements
In this module, you will learn how to:
- Research, implement and manage engineering processes using secure design principles
- Understand the fundamental concepts of security models (e.g., Biba, Star Model, Bell-LaPadula)
- Select controls based upon systems security requirements
- Understand security capabilities of Information Systems (IS) (e.g., memory protection, Trusted Platform Module (TPM), encryption/decryption)
- Assess and mitigate the vulnerabilities of security architectures, designs, and solution elements
- Select and determine cryptographic solutions
- Understand methods of cryptanalytic attacks
- Apply security principles to site and facility design
- Design site and facility security controls
In this module, you will learn how to:
- Assess and implement secure design principles in network architectures
- Secure network components
- Implement secure communication channels according to design
In this module, you will learn how to:
- Control physical and logical access to assets
- Manage identification and authentication of people, devices, and services
- Federated identity with a third-party service
- Implement and manage authorization mechanisms
- Manage the identity and access provisioning lifecycle
- Implement authentication systems
In this module, you will learn how to:
- Design and validate assessment, test, and audit strategies
- Conduct security control testing
- Collect security process data (e.g., technical and administrative)
- Analyze test output and generate a report
- Conduct or facilitate security audits
In this module, you will learn how to:
- Understand and comply with investigations
- Conduct logging and monitoring activities
- Perform Configuration Management (CM) (e.g., provisioning, baselining, automation)
- Apply foundational security operations concepts
- Apply resource protection
- Conduct incident management
- Operate and maintain detective and preventative measures
- Implement and support patch and vulnerability management
- Understand and participate in change management processes
- Implement recovery strategies
- Implement Disaster Recovery (DR) processes
- Test Disaster Recovery Plans (DRP)
- Participate in Business Continuity (BC) planning and exercises
- Implement and manage physical security
- Address personnel safety and security concerns
In this module, you will learn how to:
- Understand and integrate security in the Software Development Life Cycle (SDLC)
- Identify and apply security controls in software development ecosystems
- Assess the effectiveness of software security
- Assess security impact of acquired software
- Define and apply secure code
