Certified Information Systems Security Professional (CISSP 2021)

Objectives

• At the end of In this course, learners will be able to:

  • -        Apply fundamental concepts and methods related to the fields of information technology and security
  • -        Align overall organizational operational goals with security functions and implementations
  • -        Determine how to protect assets of the organization as they go through their lifecycle
  • -        Leverage the concepts, principles, structures and standards used to design, implement, monitor and secure operating systems, equipment, networks, applications and those controls used to enforce various levels of confidentiality, integrity and availability
  • -        Apply security design principles to select appropriate mitigations for vulnerabilities present in common information system types and architectures
  • -        Explain the importance of cryptography and the security services it can provide in today’s digital and information age
  • -        Evaluate the physical security elements relative to information system needs
  • -        Evaluate the elements that comprise communication and network security relative to information security needs
  • -        Leverage the concepts and architecture that define the associated technology and implementation systems and protocols at Open Systems Interconnection (OSI) model layers 1-7 to meet information security needs
  • -        Determine appropriate access control models to meet business security requirements
  • -        Apply physical and logical access controls models to meet information security needs
  • -        Differentiate between primary methods for designing and validating test and audit strategies that support information security requirements
  • -        Apply appropriate security controls and countermeasures to optimize an organization’s operation function and capacity
  • -        Assess information systems risks to an organization’s operational endeavors
  • -        Determine appropriate controls to mitigate specific threats and vulnerabilities
  • -        Apply information systems security concepts to mitigate the risk of software and systems vulnerabilities through the systems’ lifecycles

Course Agenda

• Chapter 1: The Information Security Environment
• Chapter 2: Information Asset Security
• Chapter 3: Identity and Access Management
• Chapter 4: Security Architecture and Engineering
• Chapter 5: Communication and Network Security
• Chapter 6: Software Development Security
• Chapter 7: Security Assessment and Testing
• Chapter 8: Security Operations