CISSP CBK Review

Show more Security Theory Training Courses

About this class

The CISSP Certification is an independent and objective measure of professional expertise and knowledge within the information security profession.

This certification and review seminar is based on the International Information Systems Security Certifications Consortium (ISC) Common Body of Knowledge (CBK) - the industry's most comprehensive compendium of best practices.

The CBK comprises ten subject domains which (ISC) compiles and maintains through an ongoing peer review by subject matter experts. This ensures the curriculum of all CBK Review Seminars are up-to-date and relevant for today's information security challenges.

Who will the lesson benefit?

This advanced cousre is for professionals seeking comprehensive knowledge of security and possibly CISSP certification.

What delegates will learn

This intensive five day course, with optional workshops, will broaden your understanding of all ten CBK domains as required for the (ISC) CISSP CBK accreditation examination.

Delegates will learn:

• Access Control
• Application Security
• Business Continuity and Disaster Recovery Planning
• Cryptography
• Information Security and Risk Management
• Legal, Regulations, Compliance and Investigations
• Operations Security
• Physical (Environmental) Security
• Security Architecture and Design
• Telecommunications and Network Security

What prerequisites are required

(ISC) recommends you should have a minimum of five full years experience in at least two of the 10 domain of the CBK. You may qualify for an experience waiver (maximum of 2 years can be waived, 1 year for degrees only and 1 year for (ISC)2 approved credentials, like the MCSE).

Contents of this class

Security management practices

• Concepts and objectives
• Risk management
• Policies and procedures
• Information classification
• Information security roles and responsibilities
• Information security awareness.

Security architectures and models

• Computer science and architecture
• Security and control concepts
• Security models
• Evaluation criteria
• Host-based and client/server security
• Network architecture and security
• IP security architecture.

Access control systems and methodology

• Concepts and issues
• Identification and authentication
• Single sign-on
• Centralised/de-centralised/distributed access control methodologies.

Application development security

• Definitions, security goals and threats
• System lifecycle
• Security architecture
• Change control
• Application development and security measures
• Databases and data warehousing
• Knowledge-based systems.

Operations security

• Resources and privileges
• Control mechanisms
• Potential abuses
• Appropriate controls
• Principles.

Cryptography

• History and definitions
• Applications and uses of cryptography
• Protocols and standards
• Basic technologies
• Encryption systems
• Symmetric/asymmetric cryptography
• Digital signatures
• Email and Internet security using encryption
• Key management
• Public key infrastructure (PKI)
• Cryptanalysis and attacks
• Export issues.

Physical security

• Facilities management
• Personnel security
• Defence in depth
• Physical controls.

Telecommunications, network and Internet security

• Communications security management
• Network protocols
• Identification and authentication
• Data communications
• Internet and web security
• Attack methods
• Multimedia security.

Business continuity planning and disaster recovery

• Business and disaster recovery concepts
• Recovery planning process
• Programme management
• Vulnerability assessment
• Disaster prevention.

Law, investigations and ethics

• Laws and regulations
• Incident handling and response management
• Conducting investigations
• Information security ethics
• (ISC) code of ethics.

CISSP CBK Review / ISC

(C) AquinasTraining.co.uk - Contact Us