CISSP Training

Online Instructor-led (5 days)

Online Self-paced (40 hours)

Certified Information Systems Security Professional Course Outline

Domain 1: Security and Risk Management

  • Understand and Apply Security Concepts
  • Evaluate and Apply Security Governance Principles
  • Determine Compliance and Other Requirements
  • Legal and Regulatory Issues that Pertain to Information Security in a Global Context
  • Requirements for Investigation Types
  • Develop, Document, and Implement Security Policy, Standards, Procedures, and Guidelines
  • Identify, Analyse, and Prioritize Business Continuity (BC) Requirements
  • Contribute to and Enforce Personnel Security Policies and Procedures
  • Understand and Apply Risk Management Concepts
  • Understand and Apply Threat Modelling Concepts and Methodologies
  • Apply Supply Chain Risk Management (SCRM) Concepts
  • Establish and Maintain a Security Awareness, Education, and Training Programme

Domain 2: Asset Security

  • Identify and Classify Information and Assets
  • Establish Information and Asset Handling Requirements
  • Provision Resources Securely
  • Manage Data Lifecycle
  • Ensure Appropriate Asset Retention
  • Data Security Controls and Compliance Requirements

Domain 3: Security Architecture and Engineering

  • Research, Implement, and Manage Engineering Processes Using Secure Design Principles
  • Fundamental Concepts of Security Models
  • Select Controls Based Upon Systems Security Requirements
  • Security Capabilities of Information Systems
  • Assess and Mitigate the Vulnerabilities of Security Architectures, Designs, and Solution Elements
  • Cryptographic Life Cycle
  • Methods of Cryptanalytic Attacks
  • Apply Security Principles to Site and Facility Design
  • Design Site and Facility Security Controls

Domain 4: Communication and Network Security

  • Implement Secure Design Principles in Network Architectures
  • Secure Network Components
  • Implement Secure Communication Channels According to Design

Domain 5: Identity and Access Management (IAM)

  • Control Physical and Logical Access to Assets
  • Manage Identification and Authentication of People, Devices, and Services
  • Integrate Identity as a Third-Party Service
  • Implement and Manage Authorization Mechanisms
  • Manage the Identity and Access Provisioning Lifecycle
  • Implement Authentication Systems

Domain 6: Security Assessment and Testing

  • Design and Validate Assessment, Test, and Audit Strategies
  • Conduct Security Control Testing
  • Collect Security Process Data
  • Analyse Test Output and Generate Report
  • Conduct or Facilitate Security Audits

Domain 7: Security Operations

  • Understand and Support Investigations
  • Requirements for Investigation Types
  • Conduct Logging and Monitoring Activities
  • Securely Provisioning Resources
  • Understand and Apply Foundational Security Operations Concepts
  • Apply Resource Protection Techniques
  • Conduct Incident Management
  • Operate and Maintain Detective and Preventative Measures
  • Implement and Support Patch and Vulnerability Management
  • Participate in Change Management Processes
  • Implement Recovery Strategies

Domain 8: Software Development Security

  • Integrate Security in the Software Development Life Cycle (SDLC)
  • Identify and Apply Security Controls in Development Environments
  • Assess the Effectiveness of Software Security
  • Assess Security Impact of Acquired Software
  • Define and Apply Secure Coding Guidelines and Standards

Show moredown

Who should attend this CISSP Certification Course?

The Certified Information Systems Security Professional (CISSP) Training Course in the United States is a globally acknowledged credential that demonstrates a high level of expertise in Information Security. This CISSP Training Course can be beneficial for a wide range of professionals, including:

  • Information Security Professionals
  • Security Consultants
  • Security Managers
  • Security Analysts
  • Risk Management Specialists
  • Network Architects
  • Compliance Officers

Prerequisites of the CISSP Certification Course

There are no formal prerequisites for this CISSP Certification Course in the United States.

CISSP Certification Course Overview

The CISSP Certification Training in the United States is a comprehensive course aimed at providing information security professionals with advanced knowledge and skills to excel in their roles. In an era where cybersecurity threats are becoming more sophisticated, the Certified Information Systems Security Professional (CISSP) certification is crucial for individuals responsible for securing organizations' sensitive information.

A CISSP Certification in the United States is essential for professionals in information security, cybersecurity, and IT management roles. As cyber threats continue to evolve, mastering CISSP becomes a key competency. This course is particularly important for professionals aiming to advance their careers in information security, secure high-profile roles, and demonstrate their expertise in designing, implementing, and managing a robust cybersecurity program.

This 5-day CISSP Certification Course in the United States is designed to efficiently prepare delegates for the CISSP exam. Participants will gain insights into the core domains of information security, covering topics such as security and risk management, asset security, and communication and network security. This condensed yet comprehensive training equips delegates with the knowledge and strategies to successfully pass the CISSP exam.

Course Objectives

  • To understand the core domains of information security covered in CISSP
  • To gain proficiency in designing, implementing, and managing a robust cybersecurity program
  • To prepare for the CISSP certification exam efficiently
  • To master cybersecurity principles and best practices
  • To demonstrate expertise in information security roles
  • To advance careers in information security and IT management

Upon completing this course in the United States, delegates will not only be well-prepared for the CISSP Certification exam but will also possess a thorough understanding of cybersecurity principles and best practices.

Show moredown

What’s included in this CISSP Certification Course?

  • World-Class Training Sessions from Experienced Instructors
  • CISSP Certificate
  • Digital Delegate Pack

Show moredown

Online Instructor-led (4 days)

Online Self-paced (32 hours)

CISSP-ISSAP Training & Certification Course Outline

Domain 1: Architect for Governance, Compliance and Risk Management

  • Determine Legal, Regulatory, Organisational and Industry Requirements
  • Manage Risk

Domain 2: Security Architecture Modelling

  • Identify Security Architecture Approach
  • Verify and Validate Design

Domain 3: Infrastructure Security Architecture

  • Develop Infrastructure Security Requirements
  • Design Defence-in-depth Architecture
  • Secure Shared Services
  • Integrate Technical Security Controls
  • Design and Integrate Infrastructure Monitoring
  • Design infrastructure Cryptographic Solutions
  • Design Secure Network and Communication Infrastructure
  • Evaluate Physical and Environmental Security Requirements

Domain 4: Identity and Access Management (IAM) Architecture

  • Design Identity Management and Lifecycle
  • Design Access Control Management and Lifecycle
  • Design Identity and Access Solutions

Domain 5: Architect for Application Security

  • Integrate Software Development Life Cycle (SDLC) with Application Security Architecture
  • Determine Application Security Capability Requirements and Strategy
  • Identify Common Proactive Controls for Applications

Domain 6: Security Operations Architecture

  • Gather Security Operations Requirements
  • Design Information Security Monitoring
  • Design Business Continuity (BC) and Resiliency Solutions
  • Validate Business Continuity Plan (BCP)/Disaster Recovery Plan (DRP) Architecture
  • Design Incident Response (IR) management
 

This teaching will be supported by discussion sessions and exercises to help you understand and master the material. There will also be final exam preparation and the chance to try practice questions.

Show moredown

Who should attend this CISSP-ISSAP Training & Certification Course?

The CISSP-ISSAP is an advanced credential for those who have already achieved the CISSP Course. This course can be beneficial for a wide range of professionals, including:

  • Chief Security Architects
  • Security System Engineers
  • Chief Security Analysts
  • Security Consultants
  • IT Managers & Directors
  • Security Planners
  • Network Architects

Prerequisites of the CISSP-ISSAP Training & Certification Course

Delegates must have the CISSP Certification and two years of total paid work experience in one or more six CISSP-ISSAP domains to receive the CISSP-ISSAP Certification.

CISSP-ISSAP Training & Certification Course Overview

This CISSP Training is a vital component of the more comprehensive training framework that delves into Information Systems Security Architecture, focusing on the design and management of security solutions. In today's increasingly digital and interconnected world, safeguarding sensitive data is paramount. The CISSP-ISSAP Course equips professionals with the knowledge and skills to architect secure systems effectively, making it highly relevant in the context of evolving cybersecurity threats.

Proficiency in this CISSP Training Course is crucial for Information Security Professionals and Architects, as it enables them to master the principles and techniques necessary to design, develop, and implement secure information systems. This CISSP Training is ideal for professionals seeking CISSP Qualifications and those who aim to specialise in Information Security Architecture within their organisations.

The Knowledge Academy’s 4-day CISSP-ISSAP Training & Certification Course empowers delegates with comprehensive knowledge of security architecture principles, methodologies, and best practices. Through interactive sessions and practical exercises, delegates gain a deep understanding of how to align business objectives with security requirements, ensuring a robust security posture for their organisations. The course also covers topics like risk management, security planning, and security assessment methods, giving delegates valuable insights for real-world application.

Course Objectives

  • To gain a thorough understanding of Information Security Architecture principles
  • To master security assessment and risk management methodologies
  • To learn to align business objectives with security requirements
  • To develop skills in designing secure information systems
  • To implement best practices for Information Security
  • To understand the role of security architecture in compliance and governance
  • To enhance expertise in security planning and risk assessment
  • To acquire valuable insights into securing critical information assets

After completing the CISSP Training & Certification Course, delegates will be well-prepared to earn their CISSP Certification, making them valuable assets in the field of Information Security. Armed with the knowledge and skills acquired, they can contribute to the design and management of secure information systems, protecting critical data, and ensuring the resilience of their organisations against modern cybersecurity threats.

Show moredown

 

What’s included in this CISSP-ISSAP Training & Certification Course?

  • World-Class Training Sessions from Experienced Instructors
  • CISSP-ISSAP Certificate
  • Digital Delegate Pack

Show moredown

Online Instructor-led (3 days)

Online Self-paced (24 hours)

Information Systems Security Management Training Course Outline

Module 1: Information Systems

  • Introduction to Information Systems
  • Components
  • Types
  • Acquiring Information Systems and Services
  • Managing Information Systems
  • Information Systems Security and Control
  • Impacts of Information Security Systems

Module 2: Information Security

  • What is Information Security?
  • Need
  • Information Security Triad
  • Threats
  • Active and Passive Attacks
  • Password Security
  • Virtual Private Networks
  • Personal Information Security

Module 3: Information Security Types

  • Application Security
  • Infrastructure Security
  • Cloud Security
  • Cryptography
  • Incident Response
  • Vulnerability Management
  • Disaster Recovery

Module 4: Major Challenges to Information Systems Security

  • Networked Systems
  • Asymmetry Between Defence and Offense
  • Ease-Of-Use Compromises
  • Perimeter Defence
  • Use of Cots Components
  • Threats Posed by Insiders
  • Passive Defence

Module 5: Common Information Security Risks

  • Social Engineering Attacks
  • Advanced Persistent Threats (APT)
  • Insider Threats
  • Cryptojacking
  • Distributed Denial of Service (DDoS)
  • Ransomware
  • Man-in-the-Middle (MitM) Attacks

Module 6: Information Security Technologies

  • Firewalls
  • Security Incident and Event Management (SIEM)
  • Data Loss Prevention (DLP)
  • Intrusion Detection System (IPS)
  • User Behavioural Analytics (UBA)
  • Blockchain Cybersecurity
  • Endpoint Detection and Response (EDR)
  • Cloud Security Posture Management (CSPM)

Show moredown

Who should attend this Information Systems Security Management Training Course?

The Information Systems Security Management Training Course is designed to equip individuals with the skills and knowledge required to manage and maintain the security of information systems within organisations. This CISSP Training Course will benefit the following professionals:

  • Information Security Managers
  • Information Security Analysts
  • IT Professionals
  • Compliance Officers
  • Auditors
  • Cybersecurity Engineers
  • DevOps Engineers

Prerequisites of the Information Systems Security Management Training Course

There are no formal prerequisites for this Information Systems Security Management Training Course. However, prior experience in Information Technology (IT) is recommended but not mandatory. Also, familiarity with security concepts might prove to be beneficial for the delegate.

Information Systems Security Management Training Course Overview

This Information Systems Security Management Training Course offers a comprehensive exploration of Information Systems Security Management. In today's interconnected world, understanding the principles of security is crucial. It equips individuals with the skills to safeguard data and mitigate cyber threats, ensuring the resilience and integrity of organisation's digital assets.

Proficiency in Information Systems Security Management is essential, and professionals aiming to master this subject include Cybersecurity Experts, IT Managers, System Administrators, and anyone responsible for ensuring the confidentiality, integrity, and availability of data. These professionals are the first line of defence against cyberattacks, and this course empowers them to excel in this critical role.

This intensive 1-day Information Systems Security Management Course equips delegates with the fundamental knowledge and tools needed to manage and secure information systems effectively. Delegates will gain a deep understanding of security principles, risk management, access control, cryptography, and network security. Practical insights, real-world scenarios, and hands-on exercises ensure that delegates leave with tangible skills to enhance their organisation's security posture.

Course Objectives

  • To prevent unauthorised access and destruction of the information
  • To maintain accuracy and completeness of the data through integrity
  • To verify the user for the input arriving at the destination from a trusted source
  • To encrypt connection over the internet from a device to a network
  • To access a safe and secure way to connect users and devices remotely
  • To implement effective access controls and encryption techniques
  • To develop a security-focused mindset and culture within the organisation

After completing this CISSP Course, delegates will be armed with the knowledge and skills required to contribute to the enhanced security of their organisations and further their careers in the field of cybersecurity.

Show moredown

What’s included in this Information Systems Security Management Training Course?

  • World-Class Training Sessions from Experienced Instructors
  • Information Systems Security Management Certificate
  • Digital Delegate Pack

Show moredown

Online Instructor-led (3 days)

Online Self-paced (24 hours)

Chief Information Security Officer Training Course Outline

Domain 1: Governance and Risk Management 

Module 1: Governance

  • Introduction to Governance
  • Information Security Governance

Module 2: Information Security Management Structure

  • Introduction
  • Sizing
  • Management Structure

Module 3: Principles of Information Security

  • Principles of Information Security
  • CIA Traid
  • Security Vulnerabilities, Threats, Risks, and Exposures
  • Cyberattack Elements
  • Defence-in-depth

Module 4: Risk Management

  • Risk Management Programme
  • Approach
  • Process
  • Method
  • Best Practice Frameworks for Risk Management

Module 5: Management and Technical Information Security Elements

  • Management and Technical Information Security Elements
  • Security Programme Plan
  • Security Policies, Standards, and Guidelines
  • Asset Security
  • Identity and Access Management
  • Security Engineering
  • Security Operations
  • Software Development Security
  • Security Assessments and Testing
  • Security Training and Awareness
  • Business Continuity and Disaster Recovery

Module 6: Compliance

  • Compliance
  • Compliance Team
  • Compliance Management

Module 7: Privacy

  • Privacy
  • Privacy Impact Assessment
  • Privacy and Security

Module 8: Laws and Regulatory Drivers

  • Laws and Regulatory Drivers
  • Federal Information Security Modernisation Act
  • Defence Federal Acquisition Regulation Supplement 252.204-7012
  • Who Does DFARS 252.204-7012 Apply to?
  • How Does Compliance Impact an Organisation?
  • Clinger-Cohen Act
  • Payment Card Industry Data Security Standard
  • Who Does PCI DSS Apply to?
  • Privacy Act of 1974
  • GRAMM-LEACH-BLILEY ACT
  • Health Insurance Portability and Accountability Act
  • Family Educational Rights and Privacy Act
  • SARBANES-OXLEY ACT
  • General Data Protection Regulation

Module 9: Standards and Frameworks

  • ISO/IEC 27000 Series
  • ISO/IEC 27001
  • NIST Cybersecurity Framework
  • Federal Information Processing Standards
  • Privacy Shield
  • COBIT

Module 10: Information Security Trends and Best Practices

  • Information Security Trends and Best Practices
  • Open Web Application Security Project
  • Cloud Security Alliance
  • Centre for Internet Security

Module 11: Information Security Training and Certifications

  • International Information System Security Certification Consortium
  • ISACA
  • International Council of E-Commerce Consultants
  • Sans Institute
  • Computing Technology Industry Association
  • International Association of Privacy Professionals
  • Offensive Security

Module 12: Ethics

  • Introduction to Ethics

Domain 2: Information Security Controls, Compliance, and Audit Management

Module 13: Information Security Controls

  • Control Fundamentals
  • Control Frameworks

Module 14: Information Security Control Life Cycle

  • Information Security Control Life Cycle
  • Risk Assessment
  • Design
  • Implementation
  • Assessment
  • Monitoring

Module 15: Information Security Control Life Cycle Frameworks

  • NIST SP
  • NIST Risk Management Framework
  • NIST Cybersecurity Framework
  • ISO/IEC 27000

 

Module 16: Information Security Control Frameworks

  • Components of Exploring Information Security Control Frameworks
  • NIST SP 800-53
  • NIST Cybersecurity Framework
  • ISO/IEC 27002
  • CIS Critical Security Controls
  • CSA Cloud Controls Matrix

Module 17: Auditing for the CISO

  • Auditing for the CISO
  • Audit Management
  • Audit Process
  • Control Self-assessments
  • Continuous Auditing
  • Specific Types of Audits and Assessments

Domain 3: Security Programme Management and Operations

Module 18: Security Programme Management

  • Security Areas of Focus
  • Security Streams of Work
  • Security Projects

Module 19: Security Programme Budgets, Finance, and Cost Control

  • Establishing the Budget
  • Managing and Monitoring Spending
  • Security Programme Resource Management: Building the Security Team

Module 20: Project Management

  • Project Management Fundamentals
  • Phases of Project Management
  • Initiating
  • Planning
  • Executing
  • Monitoring and Controlling
  • Closing

Domain 4: Information Security Core Competencies

Module 21: Malicious Software and Attacks

  • Malware
  • Scripting and Vulnerability-Specific Attacks

Module 22: Social Engineering

  • Types of Social Engineering Attacks
  • Why Employees are Susceptible to Social Engineering?
  • Social Engineering Defences

Module 23: Asset Security

  • Asset Inventory and Configuration
  • Secure Configuration Baselines
  • Vulnerability Management
  • Asset Security Techniques

Module 24: Data Security

  • Data at Rest
  • Data in Transit
  • Data in Use
  • Data Life Cycle

Module 25: Identity and Access Management

  • Identity and Access Management Fundamentals
  • Identity Management Technologies
  • Authentication Factors and Mechanisms
  • Access Control Principles
  • Access Control Models
  • Access Control Administration
  • Identity and Access Management Life Cycle

Module 26: Communication and Network Security

  • WANs and LANs
  • IP Addressing
  • Network Address Translation
  • Network Protocols and Communications
  • Wireless
  • Network Technologies and Defences

Module 27: Cryptography

  • Cryptography
  • Cryptographic Definitions
  • Cryptographic Services
  • Symmetric, Asymmetric, And Hybrid Cryptosystems
  • Hash Algorithms
  • Message Authentication Codes
  • Digital Signatures
  • Public Key Infrastructure

Module 28: Cloud Security

  • Cloud Security
  • Cloud Computing Characteristics
  • Cloud Deployment Models
  • Cloud Service Models
  • Cloud Security Risks and Assurance Levels
  • Cloud Security Resources

Module 29: Physical Security

  • Making Security Decisions
  • Physical Security Threats
  • Physical Security Programme Planning
  • Physical Security Resources
  • Physical Security Controls
  • Physical Security Auditing and Measurement

Module 30: Personnel Security

  • Personnel Security
  • Software Development Security
  • Integrating Security into the SDLC
  • Security SDLC Roles and Responsibilities
  • Software Vulnerabilities
  • Secure Coding Practices
  • Software Vulnerability Analysis and Assessments

Module 31: Forensics, Incident Handling, and Investigations

  • Relevant Law
  • Logging and Monitoring
  • Incident Response and Investigations
  • Forensics and Digital Evidence

Module 32: Security Assessment and Testings

  • Introduction to Security Assessment and Testings
  • Vulnerability Assessments
  • Penetration Testing
  • Security Programme Assessments

Module 33: Business Continuity and Disaster Recovery

  • Introduction to Business Continuity and Disaster Recovery
  • Continuity Planning Initiation
  • Business Impact Analysis
  • Identify Preventive Controls
  • Develop Recovery Strategies and Solutions
  • Develop the Plan
  • Test the Plan
  • Maintain the Plan

Domain 5: Strategic Planning, Finance, Procurement, and Vendor Management

Module 34: Strategic Planning 

  • Introduction to Strategic Planning
  • Organisational Strategic Planning
  • Organisational Strategic Planning Teams
  • Strategic Planning Process
  • Security Strategic Plan

Module 35: Making Security Decisions

  • Introduction to Making Security Decisions
  • Enterprise Architecture

Module 36: Financial Management

  • Financial Management
  • Accounting and Finance Basics
  • Information Security Annual Budget

Module 37: Procurement and Vendor Management

  • Overview of Procurement and Vendor Management
  • Procurement Core Principles and Processes
  • Types of Contracts
  • Scope Agreements
  • Third-party Vendor Risk Management

Show moredown

Who should attend this Chief Information Security Officer Training?

This Chief Information Security Officer Certification Course is designed to provide IT professionals with the skills and knowledge they need to lead and manage an organisation's Information Security programme. This CISSP Training Course can benefit a wide range of professionals, including:

  • Security Consultants
  • IT Security Engineers
  • Chief Information Security Officers (CISOs)
  • Network Architects
  • IT Consultants
  • Risk Managers
  • Compliance Officers

Prerequisites of the Chief Information Security Officer Training

There are no formal prerequisites for this Chief Information Security Officer Course.

Chief Information Security Officer Training Course Overview

The Chief Information Security Officer Training Course equips professionals with the knowledge and skills to protect against evolving cyber threats and adhere to compliance standards. In a world where data breaches can have devastating consequences, mastering the principles of Information Security is essential.

Proficiency in Information Security is vital not only to protect an organisation's assets but also to maintain its reputation and customer trust. IT Professionals, Cybersecurity Experts, and aspiring Chief Information Security Officers (CISOs) should aim to master this CISSP Training Course. With the increase in data breaches and tightening regulations, a foundation in Information Security is critical for career growth and ensuring a secure digital landscape.

This intensive 3-day Chief Information Security Officer Training Course provides delegates with a comprehensive understanding of essential concepts, strategies, and best practices in Information Security. Delegates will gain the expertise needed to identify vulnerabilities, assess risks, and implement robust security measures.

Course Objectives

  • To understand the core principles and concepts of Information Security
  • To develop expertise in risk management and compliance
  • To master security architecture and engineering
  • To acquire in-depth knowledge of cryptography and access control systems
  • To learn about network security and security operations
  • To gain proficiency in security assessments and testing
  • To understand the principles of software development security

After completing this Chief Information Security Officer Training, delegates will be equipped with the necessary skills and knowledge to lead and manage organisations’ Information Security programmes. A CISSP Certification Training not only validates their knowledge but also opens doors to numerous career opportunities as CISOs, Security Consultants, or Information Security Managers. 

Show moredown

What’s included in this Chief Information Security Officer Training Course?

  • World-Class Training Sessions from Experienced Instructors
  • Chief Information Security Officer Certificate
  • Digital Delegate Pack

Show moredown

Not sure which course to choose?

Speak to a training expert for advice if you are unsure of what course is right for you. Give us a call on +1 7204454674 or Inquire.

Package deals for CISSP Training

Our training experts have compiled a range of course packages on a variety of categories in CISSP Training, to boost your career. The packages consist of the best possible qualifications with CISSP Training, and allows you to purchase multiple courses at a discounted rate.

Swipe for more. Don’t miss out!

CISSP Training FAQs

There hasn't been any questions asked about this Topic

Please see our courses available in the United States
The Knowledge Academy is the Leading global training provider for .
The training fees for in the United States starts from $4695.
Show more down

Why we're the go to training provider for you

icon

Best price in the industry

You won't find better value in the marketplace. If you do find a lower price, we will beat it.

icon

Trusted & Approved

We are accredited by PeopleCert on behalf of AXELOS

icon

Many delivery methods

Flexible delivery methods are available depending on your learning style.

icon

High quality resources

Resources are included for a comprehensive learning experience.

barclays Logo
deloitte Logo
Thames Water Logo

"Really good course and well organised. Trainer was great with a sense of humour - his experience allowed a free flowing course, structured to help you gain as much information & relevant experience whilst helping prepare you for the exam"

Joshua Davies, Thames Water

santander logo
bmw Logo
Google Logo
cross

OUR BIGGEST SUMMER SALE!

Special Discounts

red-starWHO WILL BE FUNDING THE COURSE?

close

close

Thank you for your enquiry!

One of our training experts will be in touch shortly to go over your training requirements.

close

close

Press esc to close

close close

Back to course information

Thank you for your enquiry!

One of our training experts will be in touch shortly to go overy your training requirements.

close close

Thank you for your enquiry!

One of our training experts will be in touch shortly to go over your training requirements.