Certified Information Systems Security Professional (CISSP)

The Certified Information Systems Security Professional (CISSP) exam preparatory training course provides the skills to design architecture and manage controls to ensure the security of business environments. With CISSP certification, one will be able to successfully handle security issues in cloud computing, mobiles, application development, risk management, and more.

Course Agenda:

• Access Control
• Introduction to Access Control
• Access Control Key Concepts, Methodologies, and Techniques
• System Logging and Monitoring
• Access Control Attacks and Threats
• Access Control Effectiveness
• Identify and Access Provisioning Lifecycle
• Telecommunications and Network Security
• Introduction to Telecommunications and Network Security
• Network Models and System Architecture
• The Network and IT Security
• Understanding the Attack
• Tools and Tasks in Network Security
• Layer 1: Physical Layer
• Layer 2: Data-link Layer
• Layer 3: Network Layer
• Layer 4: Transport Layer
• Layer 5: Session Layer
• Layer 6: Presentation Layer
• Layer 7: Application Layer
• Information Security Governance and Risk Management
• Introduction to Information Security Governance and Risk Management
• Information Security Governance
• The Risk Management Process
• Ethical Considerations in Information Security 
• Software development Security
• System Life Cycle Security
• Systems Development Methodologies
• Security Issues with Programming Languages
• Assessing the Effectiveness of Software Security
• Security Controls
• Database Security
• Application and Database Security Issues 
• Cryptography
• Key Concepts and Common Terminology Used in Cryptography
• Historical Aspect of Cryptography
• Uses of Cryptography
• The Cryptographic Life Cycle
• Methods of Cryptography
• The Different Encryption Systems
• Algorithm Concepts
• Methods of Cryptanalytic Attacks
• Maintaining Network Security
• Maintaining Application Security
• Information Hiding Alternatives
• Security Architecture and Design
• Key Concepts and Definitions
• Types of Security Models
• Components of an Architecture
• Basic Principles of System Design
• Evaluation Models of Information Systems
• Common Security Frameworks
• Vulnerabilities and Threats
• Security Operations
• Security Concepts and Activities
• Protection of Resources
• Preventive Measures
• Change Management and Configuration Management
• System Resilience and Fault Tolerance Requirements
• Processes Required for Planning the Project
• Processes Required for Planning the Project
• Defining the Organization
• Plan Implementation
• Legal, regulations, Investigations, and Compliance
• The Major Legal Systems in Information Security
• International Law in Information Security
• Supporting the Investigation
• The Forensic Investigation
• Hardware/Embedded Device Analysis
• Compliance Processes and Procedures
• Ensure Security in Contractual Agreements and Procurement Processes
• Physical (Environmental) Security
• Definitions and Key Concepts
• Site and Facility Design Considerations
• Implementation and Operation of Perimeter Security
• Implementation and Operation of Internal Security
• Implementation and Operation of Facilities Security
• Equipment Protection
• Personnel Privacy and Safety

Objectives:

• What needs to be known to master the CISSP security technology
• To master Information Security skills & get CISSP certified
• To identify and correctly answer the any type of CISSP questions
• Important key test-taking tips for the CISSP exam
• Proven techniques for scoring high on the CISSP exam
• Important aspects of Security Policy development and Security Management Practices