Certified Information Security Systems Professional (CISSP)

The Certified Information Systems Security Professional (CISSP) certification is a globally recognized standard for IT security professionals. It validates an individual’s ability to design, implement, and manage cybersecurity programs. Covering eight key domains of information security, the CISSP ensures that candidates are knowledgeable in areas like risk management, security architecture, and identity access management.

The CISSP course is intended for experienced security practitioners, managers, and executives who want to affirm their expertise in cybersecurity. Achieving the CISSP demonstrates a commitment to the information security field and readiness for leadership roles, making it a valuable credential for advancing in IT security.

LIMITED TIME OFFER: Post-Class Study Materials, Exam Voucher, and "Second Shot Exam" for $1,199.

The CISSP exam is very expensive to earn - (ISC)² prices the exam voucher at $749. For a limited time, Logical Operations is offering the exam voucher with a "second shot" on the exam - how does it work?

• In addition to our instructor-led class/curriculum that comes with our class/class recording that comes after our class...
• ...we provide a self-paced eLearning course - lab content if available - video content, and a series of practice tests complete with answers, explanations, and reference materials. Leverage the remediation of additional learning material to maximize study effectiveness.
• Use your Score Report within the practice tests to identify objectives where your score is lower and more study is needed.
• Refine your practice experience in Practice Mode by customizing domain objectives or selecting missed questions.
• Take your practice tests in Certification Mode.
• Achieve a score of 90% or more in Certification Mode, at least twice, consecutively.

If you follow this certification preparation method and fail the corresponding vendor exam within 30 days of your last practice test attempt, we'll give you another opportunity to take the vendor exam via an additional exam voucher or gift card for the amount of the exam! Initial exam voucher will be provided after 90% score on provided practice tests, in Certification Mode, is achieved twice. No returns/refund requests of any kind will be honored as it relates to this offer (all sales are final, regardless of exam results).

Course Outline

Lesson 1: The CISSP Certification Exam

• Assessing exam requirements
• Determining whether you’re ready for the exam
• Using practice questions
• Using your time wisely

Lesson 2: Understanding Asset Security

• Proper methods for data destruction
• Development of documents that can aid in compliance with local, state, and federal laws
• The implementation of encryption and its use for the protection of data
• How to use data security control

Lesson 3: Security and Risk Management

• Calculations used for risk management
• Approved approaches to good security management
• How to perform qualitative risk analysis
• How to perform quantitative risk analysis
• How to perform hybrid risk analysis
• Good resource protection
• The roles of security policies, procedures, guidelines and baselines
• Proper data classification
• Proper implementation of security roles
• How to perform risk calculation

Lesson 4: Security Architecture and Engineering

• How to select controls based on system security requirements
• Use of confidentiality models such as Bell-LaPadula
• How to identify integrity models such as Biba and Clark-Wilson
• Common flaws and security issues associated with security architecture designs
• Cryptography and how it is used to protect sensitive information
• The need for and placement of physical security control

Lesson 5: Communications and Network Security

• Secure network design
• The difference between LAN and WAN topologies
• The OSI model and its layers
• The four layers of the TCP/IP stack
• Convergence protocol

Lesson 6: Identity and Access Management

• Identity and access management
• How to control physical and logical control to assets
• Methods to integrate identity as a third-party service
• Difference between discretionary, mandatory attribute-based and role-based access control
• How to manage the identity and access provisioning lifecycle
• How to differentiate authorization types

Lesson 7: Security Assessment and Testing

• Security assessment and testing
• Assessment and test strategies
• How to identify attack methodologies
• Automated and manual testing techniques
• Examples and penetration test methodologies
• Log reviews
• Disaster recovery and business continuity
• How to perform security assessment and penetration tests
• Security metrics
• Incident response techniques

Lesson 8: Security Operations

• Disaster recovery processes and plans
• How to understand and support investigations
• Foundational security concepts
• Different types of RAID
• How to implement disaster recovery strategies and recovery strategies
• How to participate in business continuity planning and exercises
• Perimeter and internal physical controls
• How to implement disaster recovery processes
• Auditing and monitoring

Lesson 9: Software Development Security

• The role of security in the software development lifecycle
• Database design
• The Capability Maturity Model
• The steps of the development lifecycle
• How to determine the effectiveness of software security
• The impact of acquired software security
• Different types of application design techniques
• The role of change management
• The primary types of database