CISSP Master Training (CISSP101)
This CISSP® Master Class will provide in depth coverage of the ten domains of the information security CBK and prepare you for the Certified Information Security Professional (CISSP#174;) certification, the premier security certification created and administered by the International Systems Security Certification Consortium (ISC2).
The course focuses on preparing students for the CISSP exam through extensive mentoring and drill sessions, review of the entire body of knowledge, simulated exams, and practical question and answer sessions. CISSP holders have demonstrated that they have the required skills and best practices to provide leadership in the creation and execution of enterprise-wide security infrastructures.
This CISSP course prepares attendees for the CISSP® exam and provides 40 hours of continuing security education credits.
- Learn about the ten domains of the information security CBK.
- Prepare for the Certified Information Security Professional (CISSP®) certification.
- Get 40 hours of continuing security education credits.
- Information Security Management Practices
- Management Responsibilities
- Security Policies and their supporting counterparts
- Information Classification
- Roles and Responsibilities
- Risk Management
- Security Awareness
- Access Control Systems and Methodology
- Identification, authentication, authorization methods
- Authentication methods, models and technologies
- Discretionary, mandatory and nondiscretionary access control
- Accountability, monitoring and auditing practices
- Possible threats to access control practices and technologies
- Security Architecture and Models
- Computer architecture and the items that fall within it
- Components within an operating system
- OSI Model
- Trusted computing and security mechanisms
- Different security models used in software development
- Security criterion and ratings
- Certification and accreditation processes
- Business Continuity Planning
- Business Continuity Planning
- Disaster Recovery Planning
- Possible Threats
- Business Impact Analysis
- Roles and Responsibilities
- Backups and Offsite Facilities
- Cryptography
- History of cryptography
- Cryptography components and their relationships
- Government involvement in cryptography
- Symmetric and asymmetric key cryptosystems
- Public key infrastructure (PKI) concepts and mechanisms
- Hashing algorithms and uses
- Types of attacks on cryptosystems
- Physical Security
- Administrative, technical and physical controls pertaining to physical security
- Facility location, construction and management
- Physical security risks, threats and countermeasures
- Electrical issues and countermeasures
- Fire Prevention, detection and suppression
- Authenticating individuals and intrusion detection
- Telecommunication, Network and Internet Security
- TCP/IP Suite
- Cabling and data transmission types
- LAN and WAN technologies
- Network devices and service
- Telecommunication protocols and devices
- Remote access methods and technologies
- Fault tolerance mechanisms
- Law, Investigations, Ethics
- Ethics, pertaining to security professionals and best practices
- Computer crimes and computer laws
- Motivations and profiles of attackers
- Computer crime investigation process and evidence collection
- Incident handling procedures
- Different types of evidence
- Laws and acts put into effect to fight computer crime
- Applications Security and System Development
- Different types of software controls and implementation
- Database concepts and security issues
- Data warehousing and data mining
- Software life cycle development processes
- Change control concepts
- Object oriented programming components
- Expert systems and artificial intelligence
- Computer Operations Security
- Operations responsibilities
- Configuration management
- Media access protection
- System recovery
- Facsimile security
- Intrusion detection systems
- Attack types
Each student will receive a comprehensive set of materials, including course notes and all the class examples.