IS Security

Secure Your Success on the CISSP® Certification Exam−Course Recently Updated!

Who Should Register?

What You’ll Study

Physical Security    

• Securing a site
• Risks associated with site security
• Threats
• Environmental protection mechanisms: preventative, detection, and suppression

Cryptography 

• History and purpose of cryptography
• Secret Key Encryption
• Public Key Encryption
• Stenography and its uses

Access Control

• Access control methods
• Access control vulnerabilities and exposures
• Administrative and physical controls
• Technical and logical controls

Security Architecture and Design

• Different security models and their strengths
• System architecture protection schemes
• The inter-relationship of system architecture components
• CPU modes and protection rings
• I/O device management

Telecommunications and Network Security 

• How packets move in a network
• Policy and management
• Common types of power and environmental issues: brownouts, blackouts, and power surges
• Different security controls
• Issues with VOIP (voice-over-internet-protocol) security
• Wireless networks and associated vulnerabilities

Business Continuity and Disaster Recovery Planning 

• The incident response model
• Different testing methods
• Emergency response
• Difference between business continuity and disaster recovery
• Contingency planning requirements and critical business functions
• Testing and implementing a disaster recovery plan
  

Legalities and Ethics

• Digital forensics
• The three phases of security: prevention, detection, and response
• Search, seizure, and the admissibility of evidence into court
• Governing principles of computer crime investigation
• Associated computer crime laws
• Investigative computer crime methodologies

• Application lifecycle management
• Application development methodologies
• What SSE-CMM is and how it impacts an organization
• The structure of SSE-CMM
• Differences in device verses software security
• System design specifications

• Principles of good management
• Operational resources that must be protected
• Techniques and methods for protecting operational resources
• Input and output controls
• Penetration testing
• Data protection methods for both data storage and data transmission

• Risk management techniques and practices
• Qualitative risk assessment process
• Qualitative risk assessment skills
• Difference between total risk and residual risk
• Security flow throughout the organization
• Policies, procedures, guidelines and responsibilities
• HR policies and practices

Credit & Tuition