Certified Information Systems Security Professional (CISSP): Fifth Edition with Kaplan Test Prep
Welcome to Certified Information Systems Security Professional (CISSP)®: Fifth Edition . With your completion of the prerequisites and necessary years of experience, you are firmly grounded in the knowledge requirements of today’s security professional. This course will expand upon your knowledge by addressing the essential elements of the eight domains that comprise a Common Body of Knowledge (CBK)® for information systems security professionals. The course offers a job-related approach to the security process, while providing a framework to prepare for CISSP certification.
CISSP is the premier certification for today’s information systems security professional. It remains the premier certification because the sponsoring organization, the International Information Systems Security Certification Consortium, Inc. (ISC)2 ®, regularly updates the test by using subject matter experts (SMEs) to make sure the material and the questions are relevant in today’s security environment. By defining eight security domains that comprise a CBK, industry standards for the information systems security professional have been established. The skills and knowledge you gain in this course will help you master the eight CISSP domains and ensure your credibility and success within the information systems security field.
In this course, you will identify and reinforce the major security subjects from the eight domains of the (ISC)2 CISSP CBK.
You will:
- Analyze components of the Security and Risk Management domain.
- Analyze components of the Asset Security domain.
- Analyze components of the Security Architecture and Engineering domain.
- Analyze components of the Communications and Network Security domain.
- Analyze components of the Identity and Access Management domain.
- Analyze components of the Security Assessment and Testing domain.
- Analyze components of the Security Operations domain.
- Analyze components of the Software Development Security domain.
This course is intended for experienced IT security-related practitioners, auditors, consultants, investigators, or instructors, including network or security analysts and engineers, network administrators, information security specialists, and risk management professionals, who are pursuing CISSP training and certification to acquire the credibility and mobility to advance within their current computer security careers or to migrate to a related career. Through the study of all eight CISSP CBK domains, students will validate their knowledge by meeting the necessary preparation requirements to qualify to sit for the CISSP certification exam. Additional CISSP certification requirements include a minimum of five years of direct professional work experience in two or more fields related to the eight CBK security domains, or a college degree and four years of experience.
Test Prep:
180-Day Exam Preparation (Online + Download)
- Multiple unique sets of exam-like questions for additional exam experiences
- Custom quiz settings to drill down into specific topics
- Detailed explanations and references
- Grade as you go or simulate the exam experience
- Performance Tracker to see how your performance stacks up to others
- Full set of key concepts flashcards to memorize critical information
- Online access and downloadable and printable quizzes for offline study
- Study Calendar to optimize your exam study time
- Student Discussion Board to share study tips
- InstructorLink™ to contact our IT experts
- Pass Guarantee to ensure your success
It is highly recommended that students have obtained CompTIA® Network+® or Security+® certifications, or possess equivalent professional experience upon entering CISSP training.
It will be beneficial if students have one or more of the following security-related or technology-related certifications or equivalent industry experience:
- CyberSec First Responder (CFR)
- Microsoft Certified Solutions Expert (MCSE)
- Cisco Certified Network Professional (CCNP)
- Red Hat Certified Engineer (RHCE)
- Linux Foundation Certified Engineer (LFCE)
- Systems Security Certified Practitioner (SSCP®)
- GIAC Security Essentials (GSEC)
- GIAC Information Security Fundamentals (GISF)
- Certified Information Systems Auditor (CISA™)
- Certified Information Security Manager (CISM®)
- Microsoft® Windows® 7 or greater.
- Adobe® Acrobat® Reader or an equivalent PDF viewer.
- Software for viewing the course slides. (Instructor machine only.)
For this course, you will need one computer for each student and one for the instructor. Each computer will need the following minimum hardware configurations:
- 1 GHz or faster 32-bit (x86) or 64-bit (x64) processor
- 1 gigabyte (GB) RAM (32-bit) or 2 GB RAM (64-bit)
- 16 GB available hard disk space (32-bit) or 20 GB (64-bit)
- CD-ROM drive (if installing any software from a CD-ROM)
- Keyboard and mouse (or other pointing device)
- 1,024 x 768 resolution monitor recommended
- Projection system to display the instructor's computer screen
Lesson 1: Security and
Risk Management
Topic A: Security
Governance Principles
Topic B: Compliance
Topic C: Professional
Ethics
Topic D: Security
Documentation
Topic E: Risk
Management
Topic F: Threat
Modeling
Topic G: Business
Continuity Plan Fundamentals
Topic H: Acquisition
Strategy and Practice
Topic I: Personnel
Security Policies
Topic J: Security
Awareness and Training
Lesson 2: Asset Security
Topic A: Asset
Classification
Topic B: Privacy
Protection
Topic C: Asset
Retention
Topic D: Data
Security Controls
Topic E: Secure
Data Handling
Lesson 3: Security
Architecture and Engineering
Topic A: Security
in the Engineering Lifecycle
Topic B: System
Component Security
Topic C: Security
Models
Topic D: Controls
and Countermeasures in Enterprise Security
Topic E: Information
System Security Capabilities
Topic F: Design
and Architecture Vulnerability Mitigation
Topic G: Vulnerability
Mitigation in Mobile, IoT, Embedded, and Web-Based Systems
Topic H: Cryptography
Concepts
Topic I: Cryptography
Techniques
Topic J: Site
and Facility Design for Physical Security
Topic K: Physical
Security Implementation in Sites and Facilities
Lesson 4: Communication
and Network Security
Topic A: Network
Protocol Security
Topic B: Network
Components Security
Topic C: Communication
Channel Security
Topic D: Network
Attack Mitigation
Lesson 5: Identity and
Access Management
Topic A: Physical
and Logical Access Control
Topic B: Identification,
Authentication, and Authorization
Topic C: Identity
as a Service
Topic D: Authorization
Mechanisms
Topic E: Access
Control Attack Mitigation
Lesson 6: Security
Assessment and Testing
Topic A: System
Security Control Testing
Topic B: Software
Security Control Testing
Topic C: Security
Process Data Collection
Topic D: Audits
Lesson 7: Security
Operations
Topic A: Security
Operations Concepts
Topic B: Physical
Security
Topic C: Personnel
Security
Topic D: Logging
and Monitoring
Topic E: Preventative
Measures
Topic F: Resource
Provisioning and Protection
Topic G: Patch
and Vulnerability Management
Topic H: Change
Management
Topic I: Incident
Response
Topic J: Investigations
Topic K: Disaster
Recovery Planning
Topic L: Disaster
Recovery Strategies
Topic M: Disaster
Recovery Implementation
Lesson 8: Software
Development Security
Topic A: Security
Principles in the System Lifecycle
Topic B: Security
Principles in the Software Development Lifecycle
Topic C: Database
Security in Software Development
Topic D: Security
Controls in the Development Environment
Topic E: Software
Security Effectiveness Assessment
Appendix A: Mapping Course Content to (ISC)2 Certified Information Systems Security Professional (CISSP®) April 2018 Certification Exam Outline