|
CISSP Master Class will provide in depth coverage of the ten domains of the information security CBK and prepare you for the Certified Information Security Professional (CISSP®) certification, the premier security certification created and administered by the International Systems Security Certification Consortium (ISC2).
This course focuses on preparing students for the CISSP exam through extensive mentoring and drill sessions, review of the entire body of knowledge, simulated exams, and practical question and answer sessions. CISSP holders have demonstrated that they have the required skills and best practices to provide leadership in the creation and execution of enterprise-wide security infrastructures.
Prerequisites:
CISSP® candidates must meet the following requirements prior to taking the CISSP examination. The applicant must meet the following requirements to qualify to sit for the examination:
a) Subscribe to the (ISC)² Code of Ethics; and
b) Have a minimum five years* of direct full-time security professional work experience in two or more of the ten domains of the information systems security CBK®.
Waiver of Experience: If certain circumstances apply and with appropriate documentation, candidates are eligible to waive a maximum of one year of professional experience as follows:
One year waiver of the professional experience requirement for education. Candidates can substitute a maximum of one year of direct full-time security professional work experience described above if they have a four-year college degree OR Master’s Degree in information security from a U.S. National Center of Academic Excellence in information Security (CAEIAE) or regional equivalent.
Course details are provided below and are also available in PDF format.
REGISTER HERE
COURSE DETAILS
Course Outline:
Information Security Management Practices
- Management Responsibilities
- Security Policies and their supporting counterparts
- Information Classification
- Roles and Responsibilities
- Risk Management
- Security Awareness
Access Control Systems and Methodology
- Identification, authentication, authorization methods
- Authentication methods, models and technologies
- Discretionary, mandatory and nondiscretionary access control
- Accountability, monitoring and auditing practices
- Possible threats to access control practices and technologies
Security Architecture and Models
- Computer architecture and the items that fall within it
- Components within an operating system
- OSI Model
- Trusted computing and security mechanisms
- Different security models used in software development
- Security criterion and ratings
- Certification and accreditation processes
Business Continuity Planning
- Business Continuity Planning
- Disaster Recovery Planning
- Possible Threats
- Business Impact Analysis
- Roles and Responsibilities
- Backups and Offsite Facilities
Applications Security and System Development
- Different types of software controls and implementation
- Database concepts and security issues
- Data warehousing and data mining
- Software life cycle development processes
- Change control concepts
- Object oriented programming components
- Expert systems and artificial intelligence
|
Cryptography
- History of cryptography
- Cryptography components and their relationships
- Government involvement in cryptography
- Symmetric and asymmetric key cryptosystems
- Public key infrastructure (PKI) concepts and mechanisms
- Hashing algorithms and uses
- Types of attacks on cryptosystems
Physical Security
- Administrative, technical and physical controls pertaining to physical security
- Facility location, construction and management
- Physical security risks, threats and countermeasures
- Electrical issues and countermeasures
- Fire Prevention, detection and suppression
- Authenticating individuals and intrusion detection
Telecommunication, Network and Internet Security
- TCP/IP Suite
- Cabling and data transmission types
- LAN and WAN technologies
- Network devices and service
- Telecommunication protocols and devices
- Remote access methods and technologies
- Fault tolerance mechanisms
Law, Investigations, Ethics
- Ethics, pertaining to security professionals and best practices
- Computer crimes and computer laws
- Motivations and profiles of attackers
- Computer crime investigation process and evidence collection
- Incident handling procedures
- Different types of evidence
- Laws and acts put into effect to fight computer crime
Computer Operations Security
- Operations responsibilities
- Configuration management
- Media access protection
- System recovery
- Facsimile security
- Intrusion detection systems
- Attack types
- Course Length: 5 Days or 10 Evenings
- Tuition: $2,995/per person
- Group Discounts Available
- For Information Call: 315-433-1064
|
REGISTER HERE
|
