CA flag CA
888-843-8733
888-843-8733

ISC2 ISSAP®: Information Systems Security Architecture Professional

Course 2080

  • Duration: 5 days
  • Exam Voucher: Yes
  • Language: English
  • Level: Intermediate

The Information Systems Security Architecture Professional (ISSAP) is an advanced security credential for professionals who design enterprise security solutions and provide risk-based architectural guidance aligned to organisational mission, strategy, and regulatory requirements.

In this intensive one-day course, learners explore the four domains of the ISSAP Common Body of Knowledge (CBK®), gaining practical insight into governance, security architecture modeling, infrastructure and system protection, and identity and access management (IAM) architecture.

Successful participants strengthen their ability to align security architecture with business objectives, regulatory mandates, and evolving threat landscapes across enterprise, cloud, and hybrid environments.

ISSAP Security Architecture Certification Delivery Methods

  • In-Person

  • Online

  • Upskill your whole team by bringing Private Team Training to your facility.

ISSAP Security Architecture Certification Information

Course Benefits

  • Align enterprise security architecture with governance, risk, and compliance requirements
  • Apply security architecture modeling frameworks, threat modeling, and validation techniques
  • Design secure infrastructure, system, and cryptographic architectures across hybrid environments
  • Architect scalable identity, authentication, authorisation, and auditing solutions
  • Provide risk-informed architectural guidance to organisational leadership

Prerequisites

Candidates must meet one of the following:

  • Hold an active CISSP in good standing and have two years of cumulative full-time experience in one or more ISSAP domains
    OR
  • Possess seven years of cumulative full-time experience in two or more ISSAP domains

Experience Substitution:

  • A relevant bachelor’s or master’s degree or an approved ISC2 credential may substitute for one year of experience
  • Part-time work and internships may count toward experience requirements

ISSAP Security Architecture Certification Outline

Domain 1: Governance, Risk, and Compliance (GRC)

  • Legal, regulatory, organisational, and industry security requirements
  • Sensitive data protection and privacy regulations
  • Third-party and contractual obligations
  • Asset identification, stakeholder alignment, and business objectives
  • Monitoring, reporting, auditability, and forensic readiness
  • Risk assessment integration and treatment strategies

Domain 2: Security Architecture Modeling

  • Enterprise, cloud, network, and service-oriented architecture approaches
  • Frameworks such as TOGAF®, SABSA, and reference architectures
  • Threat modeling methods including STRIDE and CVSS
  • Design validation, testing, and peer review
  • Gap analysis, mitigations, and compensating controls
  • Code review and security analysis methodologies

Domain 3: Infrastructure and System Security Architecture

Security Requirements & Deployment Models

  • On-premises, cloud, and hybrid environments
  • IT, OT, and physical security considerations
  • Monitoring, cryptography, and secure application architecture

Architecture Design & Protection Controls

  • Platform, network, storage, and cloud security
  • Endpoint protection, shared services, and third-party integrations
  • Infrastructure and content monitoring
  • Business continuity, disaster recovery, and incident communications
  • Security control applicability across system components

Cryptographic Architecture

  • Design constraints, algorithms, and lifecycle considerations
  • Encryption in transit, at rest, and in use
  • Key generation, storage, distribution, and management

Domain 4: Identity and Access Management (IAM) Architecture

Identity Lifecycle Architecture

  • Identity establishment, verification, provisioning, and de-provisioning
  • Identity technologies and governance

Authentication Architecture

  • Single-factor, multi-factor, and risk-based authentication
  • Protocols such as SAML, RADIUS, Kerberos, and OAuth
  • Trust models and federation

Authorisation Architecture

  • Least privilege, separation of duties, and authorisation models
  • Role-, rule-, attribute-, and token-based access control
  • Privileged access management (PAM) and digital rights management

Accounting, Auditing, and Compliance

  • Audit logging, alerts, integrity, and retention
  • Log analysis, reporting, and forensic readiness
  • Compliance alignment with PCI DSS, FISMA, HIPAA, and GDPR
  • Enhanced ability to design security into systems from the start
Select Commercial or Government Pricing

$4,795

  • 5-day instructor-led training course

  • Official ISC2 Content

  • Exam Voucher and Exam Re-take included 

  • Exams are only available to be taken in person at a Pearson Vue Testing Center

  • After-course coaching available

Would you like to take this course as a team?
  • Jun 1 - 5 9:00 AM - 4:30 PM EDT
    Herndon, VA or Virtual
  • Jul 13 - 17 9:00 AM - 4:30 PM EDT
    Ottawa or Virtual
  • Aug 31 - Sep 4 9:00 AM - 4:30 PM EDT
    Herndon, VA or Virtual
  • Oct 19 - 23 9:00 AM - 4:30 PM EDT
    Ottawa or Virtual
  • Nov 30 - Dec 4 9:00 AM - 4:30 PM EST
    Herndon, VA or Virtual
  • Jan 11 - 15 9:00 AM - 4:30 PM EST
    Ottawa or Virtual
  • Feb 22 - 26 9:00 AM - 4:30 PM EST
    Herndon, VA or Virtual

$4,219

  • 5-day instructor-led training course

  • Official ISC2 Content

  • Exam Voucher and Exam Re-take included 

  • Exams are only available to be taken in person at a Pearson Vue Testing Center

  • After-course coaching available

Would you like to take this course as a team?
  • Jun 1 - 5 9:00 AM - 4:30 PM EDT
    Herndon, VA or Virtual
  • Jul 13 - 17 9:00 AM - 4:30 PM EDT
    Ottawa or Virtual
  • Aug 31 - Sep 4 9:00 AM - 4:30 PM EDT
    Herndon, VA or Virtual
  • Oct 19 - 23 9:00 AM - 4:30 PM EDT
    Ottawa or Virtual
  • Nov 30 - Dec 4 9:00 AM - 4:30 PM EST
    Herndon, VA or Virtual
  • Jan 11 - 15 9:00 AM - 4:30 PM EST
    Ottawa or Virtual
  • Feb 22 - 26 9:00 AM - 4:30 PM EST
    Herndon, VA or Virtual
Speak with a Learning Consultant
* Required Fields
Speak with a Learning Consultant

Fill out the form below or call 888-843-8733

* Required Fields

Need Help Finding The Right Training Solution?

Our training advisors are here for you.

Contact Us

ISSAP Security Architecture Certification FAQs

This course is ideal for experienced cybersecurity professionals, including:

  • Security architects and enterprise architects
  • Senior security engineers and technical leads
  • Governance, risk, and compliance (GRC) professionals
  • IAM and infrastructure security specialists
  • CISSP-certified professionals pursuing ISSAP endorsement

Think of CISSP as foundational and ISSAP as advanced architectural specialisation:

  • CISSP validates broad cybersecurity knowledge across eight domains.
  • ISSAP dives deeply into security architecture and design, focusing on building and evaluating enterprise security solutions.

ISSAP follows the CISSP certification cycle:

  • Valid for three years
  • Requires earning Continuing Professional Education (CPE) credits
  • Annual maintenance fee applies

  • Positions you as a senior-level security architect
  • Enhances credibility for enterprise and cloud architecture roles
  • Supports leadership tracks such as Security Architecture Director or CISO
  • Demonstrates expertise in secure-by-design principles

Related Courses

  • ISACA
    Certified Information Systems Auditor (CISA) Training

    Get certified with our CISA training course! Covers all 5 domains on the exam, meets DoD Directive 8140/8570.01 requirements.

    Intermediate
    4 days
    Online or In-class
    Starts from $3,352
  • ISACA
    Certified Risk and Information Systems Control (CRISC) Training

    This official ISACA CRISC training course helps you prepare for the certification exam & provides you with in-depth coverage of the four CRISC domains.

    Intermediate
    4 days
    Online or In-class
    Starts from $3,352
  • ISC2
    Certified Cloud Security Professional (CCSP) Training and Certification

    The CCSP Training and Certification course teaches the knowledge & skills needed to pass the certification & become a Certified Cloud Security Professional.

    Intermediate
    5 days
    Online or In-class
    Starts from $4,576