Certified Information Systems Security Professional
Why is CISSP Certification important for you?
You live and work on the forefront of information security. Every day malicious hackers grow smarter. You always have to stay one step ahead to keep your company safe.
Prove you have what it takes with the CISSP certification!
This cybersecurity certification is an elite way to demonstrate your knowledge, advance your career and become a member of a community of cybersecurity leaders. It shows you have all it takes to design, engineer, implement and run an information security program.
The CISSP is an objective measure of excellence. It’s the most globally recognized standard of achievement in the industry. And this cybersecurity certification was the first information security credential to meet the strict conditions of ISO/IEC Standard 17024.
Who should attend?
· Security Consultant
· Security Analyst
· Security Manager
· Security Auditor
· Security Architect
· IT Director/Manager
· Director of Security
· Network Architect
· Security Systems Engineer
· Chief Information Security Officer
Examination
Domains | Weight |
1. Security and Risk Management | 16% |
2. Asset Security | 10% |
3. Security Engineering | 12% |
4. Communication and Network Security | 12% |
5.Identity and Access Management | 13% |
6. Security Assessment and Testing | 11% |
7. Security Operations | 16% |
8. Software Development Security | 10% |
Total | 100% |
Security and Risk Management
- Confidentiality, integrity and availability concepts
- Security governance principles
- Compliance
- Legal and regulatory issues
- Professional ethics
- Security policies, standards, procedures and guidelines
- Asset Security
- Information and asset classification
- Ownership (e.g., data owners, system owners)
- Protect privacy
- Appropriate retention
- Data security controls
- Handling requirements (e.g., markings, labels, storage)
Security Engineering
- Engineering processes using secure design principles
- Fundamental concepts of security models
- Security evaluation models
- Security capabilities of information systems
- Security architectures, designs and solution elements vulnerabilities
- Web-based systems vulnerabilities
- Mobile systems vulnerabilities
- Embedded devices and cyber-physical systems vulnerabilities
- Cryptography
- Site and facility design secure principles
- Physical security
Communication and Network Security
- Secure network architecture design (e.g., IP & non-IP protocols, segmentation)
- Secure network components
- Secure communication channels
- Network attacks
- Identity and Access Management
- Physical and logical assets control
- Identification and authentication of people and devices
- Identity as a service (e.g., cloud identity)
- Third-party identity services (e.g., on-premise)
- Access control attacks
- Identity and access provisioning lifecycle (e.g., provisioning review)
Security Assessment and Testing
- Assessment and test strategies
- Security process data (e.g., management and operational controls)
- Security control testing
- Test outputs (e.g., automated, manual)
- Security architecture vulnerabilities
Security Operations
- Investigations support and requirements
- Logging and monitoring activities
- Provisioning of resources
- Foundational security operations concepts
- Resource protection techniques
- Incident management
- Preventative measures
- Patch and vulnerability management
- Change management processes
- Recovery strategies
- Disaster recovery processes and plans
- Business continuity planning and exercises
- Physical security
- Personnel safety concerns
Software Development Security
- Security in the software development lifecycle
- Development environment security controls
- Software security effectiveness
- Acquired software security impact
Exam format
Duration: Up to 6 hours
Number of questions: 250 questions
Question format: Multiple choice and advanced innovative questions
Passing grade: A passing score is 700 out of 1000 points
Certification
You’re the type who craves challenges. You’re always looking for ways to expand your knowledge. And you’d like to take your career to a new level of success.
Sound familiar?
If yes, it’s time to rise to the occasion with the most-esteemed cybersecurity certification in the world. The CISSP is the right choice for you if you:
Are an experienced, high-achieving information security professional.
Are involved in designing, developing and managing the overall security posture of an organization, from cybersecurity strategy to hands-on implementation.
Want to gain more respect from your peers and boss, while you strengthen your skills and confidence as a security professional.
Appreciate a challenge and want to feel the exhilaration of passing this rigorous exam and joining our elite community.
- You’re the type who craves challenges. You’re always looking for ways to expand your knowledge. And you’d like to take your career to a new level of success.
Sound familiar?
If yes, it’s time to rise to the occasion with the most-esteemed cybersecurity certification in the world. The CISSP is the right choice for you if you:
- Are an experienced, high-achieving information security professional.
- Are involved in designing, developing and managing the overall security posture of an organization, from cybersecurity strategy to hands-on implementation.
- Want to gain more respect from your peers and boss, while you strengthen your skills and confidence as a security professional.
- Appreciate a challenge and want to feel the exhilaration of passing this rigorous exam and joining our elite community.
Benefits of CISSP
The CISSP certification is accredited by the American National Standards Institute (ANSI). This means it complies with the International Organization for Standardization and International Electrotechnical Commission (ISO/IEC) 17024 Standards.
How do I get started with CISSP Training?
If you are willing to take the challenge and obtain a CISSP Certification, our experts will ensure a valuable experience, whereby your needs will be met and you will become part of our global network.