|
|
|
|
|
Certification Review Courses |
Learning Courses |
| CISSP® CBK® Review Seminar (Standard 5 Day) |
Course Description
The (ISC)2 CISSP® CBK® Review Seminar is the most comprehensive seminar designed to aide in review of the (ISC)2 CISSP CBK, one of (ISC)2's compendia of information security industry knowledge. The review seminar helps you review the 10 domains that comprise the CISSP CBK. It also serves as a strong learning tool for mastering concepts and topics related to all aspects of information systems security.
· Information Security and Risk Management: Manages the identification of a company's information assets, and the development, documentation and implementation of security policies.
· Access Control: Requires that the candidate understand the concepts, systems and methodologies involved in granting and restricting access to resources.
· Applications Security: Requires that the candidate understand the security controls found in systems and application software, such as the affects of malicious code on distributed application environments and the security controls involved in data warehousing.
· Business Continuity & Disaster Recovery Planning: Involves the preparation, planning and updating of specific actions to protect mission critical services and data.
· Cryptography: This domain addresses the concepts, means and methods of encrypting data to ensure authenticity, integrity, and confidentiality.
· Legal, Regulations, Compliance and Investigation: Pertains to computer crime laws, methods for gathering evidence, and related ethical issues.
· Operations Security: Identifies the controls over hardware, media and the operators of these resources, and issues related to auditing and monitoring.
· Physical (Environmental) Security: Involves the threats, vulnerabilities and countermeasures utilized to physically protect enterprises' resources.
· Security Architecture & Design: This domain engages in the design, concepts, standards, and implementation security measures that ensure the availability, integrity and confidentiality of operating systems, applications and equipment.
· Telecommunications & Network Security: This domain involves designing and planning voice and data infrastructure and communications with a security strategy that includes preventative, detective and corrective measures.
The CISSP® program is targeted at professionals with at least 4 years of experience in the information security field or 3 years of experience and a college degree (or equivalent life experience).
The Standard CISSP® CBK® Review Seminar is a 5-day program of approximately forty hours of instruction and learning exercises. This program will assist students in developing knowledge in each of the above ten domains, including an understanding of their related concepts, skill sets and technologies used to plan for, design for and manage each knowledge domain.
Security Professionals in pursuit of the CISSP credential.
Courseware includes:
Course Description
The SSCP credential is targeted for the IT security “Practitioner” who is responsible for implementing the policies, standards, procedures, and guidelines pertaining to IT security implementation. The SSCP core content was developed and built from the Common Body of Knowledge foundational definition and the list of critical concepts that were identified in the SSCP Study Guide Outline.
The SSCP is not just theoretical and but also has the practical and real-world implementation examples of IT security within the seven (7) SSCP domains:
The SSCP credential is a stand alone IT Security Professional Credential that is targeted towards the IT security practitioner. It is not a stepping-stone to the CISSP nor is it a pre-requisite to obtaining the CISSP. It is implemented as the IT security professional certification for the Practitioner (System Admin, Network Technician, Network Engineer, IT Security Professional).
The SSCP® program is targeted at professionals with at least 1 year of experience in the information security field.
The Standard SSCP® CBK® Review Seminar is a 3-day program of approximately twenty-four hours of instruction and learning exercises. This program will assist students in developing knowledge in each of the above seven domains, including an understanding of their related concepts, skill sets and technologies used to design for, implement and manage each knowledge domain.
Security Practitioners in pursuit of the SSCP credential.
The Malicious Code and Other Attacks course is a one day program developed by (ISC)2 as an introduction to the many types of network based attacks that affect computer systems and networks today. It is a comprehensive course outlining types of threats ranging from the traditional virus to worms, spyware and hacking attempts. The course also describes the types of hackers and people threats to systems and the preventative measures that need to be taken to mitigate all types of risk.
This course is detailed overview of the SSCP domain of the same name and will provide an excellent preparation for this portion of the SSCP examination. The course is also valuable for Continuing Professional Education (CPE) credits for individuals that currently hold the CISSP or other certifications in the field of information security.
There are no prerequisites for this course and it will be interesting and informative for people of all levels of experience. The candidate will benefit from some basic computer knowledge and awareness of the types of threats and issues related to systems and networks of today.
Course Content
The Malicious Code and Other Network Attacks course covers the following key areas:
What is Malicious Code
The Threats and Motivations of Hackers
Categories of Malicious Code
Worms, Trojans and the Architecture of Malicious Code and Various Attacks
Countermeasures and Ways to Detect Malicious Activity
The Role of the Information Security Professional in Combating Malicious Code
The delegate to the course will be given an excellent student manual that provides further information, resources lists and background to the course materials.
The Malicious Code and Other Attacks Course is a One-day program of approximately eight hours of instruction and learning exercises. It will give all attendees a good understanding of the types of threats and attacks they should be familiar with and provide a good overview for how to detect, respond and mitigate any Malicious or Other Network Attack.
Network and System Administrators, Computer Systems Programmers and Analysts, Program Managers, Information Systems Auditors, Computer Operations Staff and Management, Database Administrators, Information Security Staff and Management, Business Analysts, and Help Desk Personnel.