CISSP / CEH // SEC250

Information Security for the IT Professional

This scenario-based course focuses on computer security as an applied process across job roles and industries. The course also helps to prepare students for achieving the Certified Information Systems Security Professional (CISSP) certification.

Course Description

Information security is part of every IT professional’s job. Hackers are constantly trying to compromise your networks, steal sensitive data, and overwhelm your systems. Planning, implementing, enforcing, or even removing security are tasks we all do to keep users and systems safe. Performing these tasks properly and in alignment with industry best practices is critical to virtually every technology role, from decision maker to developer to operator.

This scenario-based course focuses on computer security as an applied process across job roles and industries. The course also helps to prepare students for achieving the Certified Information Systems Security Professional (CISSP) certification. CISSP is widely regarded as the most valuable vendor-neutral credential a computer security professional can hold. It is frequently identified as a prerequisite for security jobs across all industries including security design, implementation, maintenance, policy development, and management of secured systems, process/procedures, policies, applications and networks.

CISSP also happens to be a challenging credential to obtain because of the depth and breadth of both theoretical and practical knowledge needed to pass the exam. The fail rate for the exam is higher than comparable technology certification exams, mostly because the exam is written to distinguish highly knowledgeable and experienced individuals. Even with experience and knowledge in the field, most security professionals find that they need some classroom preparation to meet this challenge.

Sample CISSP exam exercises and exam techniques are also covered to give students an edge during the exam process. The course is not limited to exam preparation and includes extensive scenario-based training, interactive discussions of relevant current topics, and examples from the real-world experience of the veteran instructor. These additional features differentiate the experience from pure “exam prep” courses by providing useful job skills beyond the credential.

Audience

This course is primarily designed for the IT professional whose role includes some information security tasks or responsibilities. Common job titles for students include CISO, Director, Manager, Supervisor, Analyst, Information Architect, Program Manager, Lead, Information Security Officer, Security Specialist, and Auditor. The ideal student has some practical experience in the information security industry. Experienced information security professionals will also find value in this course to update their security skills, expand their knowledge of theoretical security, practice security exercises in areas that require a “safe” environment, and deepen exposure to areas outside their current role.

Exams: CISSP – (administered by ISC2)

Prerequisites

Before taking this course, students should have six to nine months in a role that is relevant to security practices. It is also recommended that student have successfully completed the following courses or have equivalent experience.

CCNA210: ICND 1 – Interconnecting Cisco Networking Devices Part1
A560: CompTIA A+ Essentials

What You Will Learn

After taking this course, students will be better prepared to pass the formal CISSP examination. In addition, they will learn how to apply the knowledge to valuable job skills.
Although this is a certification preparation class, students will come away with much more than the core knowledge for passing an examination.

Course Outline

Identify the 10 Domains of Information Systems Security
Analyze and understand each of the 10 Domains prescribed within the CBK as follows: 
  • Security Management Practices
  • Security Architecture and Models
  • Access Control Systems and Methodology
  • Application Development Security
  • Operations Security
  • Physical Security
  • Cryptography
  • Telecommunications, Network and Internet Security
  • Business Continuity Planning 
  • Law, Investigations, & Ethics

Exams
  Certified Information Systems Security Professional (CISSP – administered by ISC²)
  Certified Information Systems Administrator (CISA, a subset of CISSP – administered by ISC²) 
  Certified Information Systems Manager (CISM, a subset of CISSP – administered by ISC²)