CISSP Bootcamp

Certified Information System Security Professional

Now completely updated for the 2024 exam refresh. (ISC)² Certified Information Systems Security Professional (CISSP) is an independent information security certification governed by the not-for-profit International Information Systems Security Certification.

The certification itself is seen as the world’s premier certification for information security professionals. The CISSP Bootcamp includes in-depth & intense coverage of all eight domains plus tips and advice to prepare yourself for the new 2024 (ISC)²exam. CISSP certification is not only an objective measure of excellence, but a globally recognized standard of achievement.

Prerequisites

To attend this training, students must have at least 2-5 years of experience in the field of security (basic concepts, standards and framework within IT Security). A background from technical IT security in networking, web security, cryptografi, authentication or background architecture / design of systems within IT is useful. The course spans wide across many different areas, and knowledge from one or more areas within security is a definite advantage.

Pre-requisites for the exam

You need to document a minimum of 5 years experience within at least 2 of the 8 knowledge areas in the CISSP curriculum, to be CISSP certified.

Audience

The Bootcamp is designed for experienced security Professionals who wish to attain (ISC)² CISSP certification and should not be taken lightly. Students must have at least 2-5 years’ experience in the field of security.

Learning Objective

• Understand and apply the concepts of risk assessment, risk analysis, data classification, and security awareness and Implement risk management and the principles used to support it (Risk avoidance, Risk acceptance, Risk mitigation, Risk transference).
• Apply a comprehensive and rigorous method for describing a current and/or future structure and behavior for an organization's security processes, information security systems, personnel, and organizational sub-units so that these practices and processes align with the organization's core goals and strategic direction and address the frameworks and policies, concepts, principles, structures, and standards used to establish criteria for the protection of information assets, as well as to assess the effectiveness of that protection and establish the foundation of a comprehensive and proactive security program to ensure the protection of an organization’s information assets.
• Apply a comprehensive and rigorous method for describing a current and/or future structure and behavior for an organization's security processes, information security systems, personnel, and organizational sub-units so that these practices and processes align with the organization's core goals and strategic direction and examine the principles, means, and methods of applying mathematical algorithms and data transformations to information to ensure its integrity, confidentiality, and authenticity.
• Understand the structures, transmission methods, transport formats, and security measures used to provide confidentiality, integrity, and availability for transmissions over private and public communications networks and media and identify risks that can be quantitatively and qualitatively measured to support the building of business cases to drive proactive security in the enterprise.
• Offer greater visibility into determining who or what may have altered data or system information, potentially affecting the integrity of those asset and match an entity, such as a person or a computer system, with the actions that entity takes against valuable assets, allowing organizations to have a better understanding of the state of their security posture.
• Plan for technology development, including risk, and evaluate the system design against mission requirements, and identify where competitive prototyping and other evaluation techniques fit in the process.
• Protect and control information processing assets in centralized and distributed environments and execute the daily tasks required to keep security services operating reliably and efficiently. Understand the Software Development Life Cycle (SDLC) and how to apply security to it, and identify which security control(s) are appropriate for the development environment, and assess the effectiveness of software security.

Course overview

The CISSP draws from a comprehensive, up-to-date, global common body of knowledge that ensures security leaders have a deep knowledge and understanding of new threats, technologies, regulations, standards, and practices. The CISSP exam tests one's competence in the 8 domains of the CISSP CBK, which cover:

• Introduction and pre-course test

• Domain 1: Security and Risk Management (Security, Risk, Compliance, Law, Regulations, Business Continuity)

• Domain 2: Asset Security (Protecting Security of Assets)

• Domain 3: Security Architecture and Engineering (Engineering and Management of Security)

• Domain 4: Communications and Network Security (Designing and Protecting Network Security)

• Domain 5: Identity and Access Management (Controlling Access and Managing Identity)

• Domain 6: Security Assessment and Testing (Designing, Performing, and Analyzing Security Testing)

• Domain 7: Security Operations (Foundational Concepts, Investigations, Incident Management, Disaster Recovery)

• Domain 8: Software Development Security (Understanding, Applying, and Enforcing Software Security)

• Post Course Test

• CISSP Exam Preparation & Review Questions

Courseware

All students receive a copy of:

• The Official (ISC)² Guide to the CISSP CBK
• CISSP Exam Self-Practice Review Questions.
• Also provided are practice test and tip sheets. All designed to fine tune your skills in preparation to take the exam.

Certification

This course, along with previous experience and rigorous self-study will help prepare you to take the following (ISC)² certification exam CISSP.
Exam and exam fee are not included in this course. You can read more about the exam at (ISC)² and register for the exam here.

Candidates for the CISSP must meet several requirements:

• Candidates must have a minimum of 5 years cumulative paid work experience in 2 or more of the 8 domains of the CISSP CBK. Earning a 4-year college degree or regional equivalent or an additional credential from the (ISC)² approved list will satisfy 1 year of the required experience. Education credit will only satisfy 1 year of experience. A candidate that doesn’t have the required experience to become a CISSP may become an Associate of (ISC)² by successfully passing the CISSP examination. The Associate of (ISC)² will then have 6 years to earn the 5 years required experience.
• Pass the CISSP exam with a scaled score of 700 points or greater out of 1000 possible points. The exam is multiple choice and advanced innovative questions, consisting of 100-150 questions, to be answered over a period of three hours.

Trainer

Aktuelt online kursus

Online kurset "Certified Information Systems Security Professional (CISSP) 2021" kunne også være interessant for dig.