About Exam

Exam number/code: CISSP
Exam name: Certified Information Systems Security Professional (CISSP)
Exam no. of questions: 250 Questions
Duration: 6 Hours
Passing score: 700
Question types: Multiple choice questions (MCQ's), Multiple choice single answer, Multiple choice multiple answer, Drag and drop & Simulations (optional)

With your completion of the prerequisites and necessary years of experience, you are firmly grounded in the knowledge requirements of today’s security professional. This course will expand upon your knowledge by addressing the essential elements of the 10 domains that comprise a Common Body of Knowledge (CBK)® for information systems security professionals. The course offers a job-related approach to the security process, while providing the basic skills required to prepare for Certified Information Systems Security Professional certification. The ISC2 Certified Information Systems Security Professional certification validates the ability of security professionals to effectively plan, administer, and maintain security in a wide range of network and business environments.

• Controlling Access to Information Systems
• Networking Systems and Telecommunications
• Defining Security Management
• Creating Applications Security
• Performing Cryptography
• Securing System Architecture
• Executing Operations Security
• Performing Business Continuity Planning
• Applying Physical Security
• Applying Law, Investigations, and Ethics

Exam Objectives

Objective
You will control access to data and information systems using common access control best practices. You will discover how networks are designed for security, and the components, protocols, and services that allow telecommunications to occur in a secure manner. Next, you will learn about the principles of security management and how to manage risk as part of a comprehensive information security management program. You will explore applications and systems development security controls. Then, you will learn how to perform cryptography and how to secure system architecture. You will examine operations security and the appropriate controls and best practices to use to keep operations secure. You will learn how to perform business continuity planning and apply physical security to protect organizational assets and resources. Finally, you will explore law, investigations, and ethics with respect to information systems security and computer forensics.

The ISC2 Certified Information Systems Security Professional certification validates the ability of security professionals to effectively plan, administer, and maintain security in a wide range of network and business environments.

• Controlling Access to Information Systems
• Control Data Access
• Control System Access
• Determine an Access Control Administration Method
• Perform a Penetration Test
• Networking Systems and Telecommunications
• Design Data Networks
• Provide Remote Access to a Data Network
• Secure a Data Network
• Manage a Data Network
• Defining Security Management
• Determine Security Management Goals
• Classify Information
• Develop a Security Program
• Manage Risk
• Creating Applications Security
• Perform Software Configuration Management
• Implement Software Controls
• Secure Database Systems
• Performing Cryptography
• Apply a Basic Cipher
• Select a Symmetric Key Cryptography Method
• Select an Asymmetric Key Cryptography Method
• Determine Email Security
• Determine Internet Security
• Securing System Architecture
• Evaluate Security Models
• Choose a Security Mode
• Provide System Assurance
• Executing Operations Security
• Control Operations Security
• Audit and Monitor Systems
• Handle Threats and Violations
• Performing Business Continuity Planning
• Sustain Business Processes
• Perform Business Impact Analysis
• Define Disaster Recovery Strategies
• Test the Disaster Recovery Plan
• Applying Physical Security
• Control Physical Access
• Monitor Physical Access
• Establish Physical Security Methods
• Design Secure Facilities
• Applying Law, Investigations, and Ethics
• Interpret Computer Crime Laws and Regulations
• Apply the Evidence Life Cycle
• Perform an Investigation
• Identify Codes of Conduct

Professionals / Students Target:
Professionals / Students pursuing Certified Information Systems Security Professional training want to establish themselves as credible computer security professionals through a study of all 10<