SC210: ISC2™ CISSP Preparation

Agenda:

• Domain 1 - Security and risk management
  • Security requirements
  • Compliance, law, regulation and policies
  • Standards and frameworks
  • Risk management
  • Business Continuity
    
    
• Domain 2 - Asset security
  • Security models and frameworks
  • Asset protection
  • Classification
    
    
• Domain 3 - Security architecture and engineering
  • Understanding of security models
  • Design and security controls
  • Cryptography
  • Physical security
    
    
• Domain 4 - Communication and network security
  • Topologies
  • Technologies
  • Protocols
  • Attacks
  • Security measures
    
    
• Domain 5 - Identity and access management (IAM)
  • Identity control
  • Access control models
    
    
• Domain 6 - Security assessment and testing
  • Planning and execution of security tests
  • Vulnerability Assessments
  • Pentests
    
    
• Domain 7 - Security operations
  • Secure operations and maintenance
  • Incident Response
  • Disaster Recovery Planning
    
    
• Domain 8 - Software development security
  • Development of secure software applications
  • Web applications and mobile applications
  • Malware and application attacks
  • IoT and ICS
    
    
• Additionally, there will be a review and Q&A sessions, and tips and learning methods will be provided.

Objectives:

The eight domains of the Common Body of Knowledge (CBK) are referred to as "a mile wide and an inch thick". Intensive preparation for the content and process of the CISSP (Certified Information Systems Security Professional) exam including the review of all relevant subject areas means that participants are provided with a broad range of technical know-how, process knowledge and architectures in rapid succession.
Special focus is placed on the newly added topics "BYOD", Software Defined Networks and Cloud Identity Services.

Target audience:

Anyone can participate in this workshop who wants to prepare for the CISSP exam. However, the CISSP certification is primarily intended for technically skilled and experienced specialists who want to consolidate and expand their knowledge of IT security acquired through studies, training, and work.
A solid understanding of common security mechanisms and several years of experience with general IT principles in at least two areas of the following domains is recommended.

The workshop is targeted at the following groups:

• Security Consultants
• Information Security Managers
• Security Officers
• Security Engineers
• Network Architects
• Experienced IT Staff

Prerequisites:

Basically, anyone interested in IT security, information technology, and IT processes can pursue CISSP certification to validate their knowledge at an internationally recognized level. However, to effectively deliver the extensive scope of the CBK within one week, knowledge in multiple IT domains is advantageous. The willingness to engage with the content beyond the course – such as through comprehensive online questionnaires – is absolutely required.

Although exam participation does not require training or study prerequisites, after successful examination, obtaining the certificate mandatorily requires proof of at least five years of relevant professional experience in at least two of the CBK domains (or 4 years experience plus relevant university degree). Proof of the aforementioned relevant professional experience requires endorsement by a CISSP (e.g., by the instructor) to subsequently apply for the certificate with ISC2™.

Description:

In the CISSP course, participants receive comprehensive knowledge and skills necessary for the strategic and technical implementation of information security. Simultaneously, they are prepared for the ISC2™ CISSP certification exam. In our intensive 5-day course, the contents of the eight domains of the "Common Body of Knowledge" (CBK) are delivered. The CBK represents a compendium that consolidates proven security best practices, technologies, theories, models and concepts.

The CISSP is the first certification that was accredited by ANSI as ISO standard 17024:2003 in the information security domain and provides not only an objective assessment of competency, but also a globally recognized performance standard. The curriculum is presented in a practical, concrete and comprehensible manner using examples on whiteboard and flipchart.

Accompanying the course, the books "ISC2™ CISSP Official Study Guide" and "ISC2™ CISSP Official Practice Tests" are provided free of charge.

Other Info:

Course Language:
The course is conducted in German with English slides and can be offered in English upon request – in addition to the official Study Guide, approximately 500-page course materials in English are provided as handouts.

Examination:
The examination was converted to online examinations in accredited Pearson VUE centers with the introduction of the new CBK, which can be found in Hamburg, Berlin, Frankfurt, Düsseldorf, Munich, Leinfelden-Echterdingen. The examination must always be taken and paid for separately at a Pearson VUE Test Center and can be flexibly registered via the Pearson VUE homepage. The examination consists of 100-150 multiple-choice questions, as Computerized Adaptive Testing (CAT), to be completed in a maximum of 3 hours. The examination is passed with 700 out of 1000 points and can optionally be taken in Chinese, English, German, Japanese, Spanish. The entire procedure is explained in detail by the instructor during the training.

If a course participant does not successfully complete the examination, we offer free re-participation in the preparation course, provided this occurs within one year of the original course attendance. Please note that costs for repeat examinations, travel, accommodation and potentially license-required training materials are not included.

Certificate:
The CISSP certificate is only issued by ISC2™ after successful examination and endorsement by a CISSP (e.g., by the trainer). The endorsement confirms the necessary professional experience and other prerequisites for the certificate. If you are already certified by ISC2™, the need for confirmation by other certified persons is eliminated – after passing the examination, you will automatically become a CISSP within 14 days.
Further information can be found on the ISC2™ website: Endorsement

Validity:
The certificate is valid for 3 years. To maintain validity beyond this period, at least 120 CPE points must be demonstrated during this timeframe (CPE = Continuous Professional Education). CPE can be easily achieved; details will be discussed during the course of the training. Otherwise, the examination must be retaken and passed after the expiration of 3 years.

Schedule:
On the first day, welcome is at 10:00 AM and training starts at 10:30 AM, usually ending at 6:00 PM. Tuesday/Wednesday/Thursday training is from 8:30 AM to 6:00 PM. On the last day (Friday), the course ends at approximately 4:00 PM.

We are happy to conduct this training on-site as well, please contact us.