Certified Information Security Service Professional (CISSP)

Certified Information Security Service Professional (CISSP)

Description

  • Provider: Makintouch Consulting
  • Location(s): Lagos
  • Duration: 5 days
  • Fee: ₦80,000
  • Venue: 24, Bamishile Street, Beside Best Western Hotel, Off Allen Avenue, Ikeja, Lagos
  • Application Deadline Listing Expired
  • Training Type fulltime
  • Required Experience
  • Start Date 21 August, 2017

Training/Course Overview

CLASS SECTION

DATE

 

Weekend classes : Saturday : 10am – 5pm

                                  Sunday :  12pm – 4pm

Weekday classes : Mondays – Fridays

                                  9am – 5pm

 

 

Weekday Class

 (lagos / Ikeja)  

  August 21 - 25

Deborah.o@makintouchconsulting.com

makintouchconsulting@gmail.com

makintouchconsulting.info@gmail.com

trainings@makintouchconsulting.com

09038138550 , 09023365438

 

 

Training/Course Outline / Requirements

 
CISSP Official Course Outline 
Why Pursue a CISSP? 

  • Many companies are beginning to regard a CISSP certification as a requirement for their technical, mid-management, and senior IT management positions. Achieving the Certified Information Systems Security Professional (CISSP) -- the world’s global security certification standard -- proves high proficiency in foundation security disciplines. Offered through (ISC)², one of the world’s leading international security certification organization, the examination’s stringent criteria sets the benchmark for excellence in security practice, requiring candidates to prove deep understanding of security concepts, principles and methodologies. 
  • The CISSP examination is rigorous, covering ten security domains essential for the protection of information systems, corporations and national infrastructures. Understanding that security is an enterprise wide problem, these domains provide the candidate with a broad understanding of the technical, managerial and human factors that must coordinate effectively to keep information and systems secure.

 

Course Overview

  • This course trains students in all areas of the security Common Body of Knowledge. They will learn security policy development, secure software development procedures, network vulnerabilities, attack types and corresponding countermeasures, cryptography concepts and their uses, disaster recovery plans and procedures, risk analysis, crucial laws and regulations, forensics basics, computer crime investigation procedures, physical security, and much, much more. They will explore the contents and concepts that make up the diverse domains and learn how they work together to provide true “in-depth” defense. 

 

Prerequisites 
Anyone may attend this course, but those with experience in one or more of the ten domains will reap the greatest benefits. Recommended Security hands-on courses are: 
? CompTIA     ? C.C.N.A 

At Course Completion 

  • Students will emerge from this course, prepared to confidently meet the challenge of CISSP certification examination. Whether or not they choose to take the examination, they would have gained a broad understanding of all of the components necessary to provide true security and will bring this knowledge and these solutions back to their workplace. 

 

The Ten Domains in Detail 
CISSP candidates are expected to be knowledgeable on the concepts, skills and technologies embodied in each domain. Here is an overview of the range of topics students will explore for each domain: 
1. Security Management Practices 
• Types of Security Controls 
• Components of a Security Program 
• Security Policies, Standards, Procedures, and 
Guidelines 
• Risk Management and Analysis 
• Information Classification 
• Employee Management Issues 
• Threats, Vulnerabilities and Corresponding Administrative Controls

2. Access Control Systems and Methodology 
• Identification, Authentication, and Authorization 
Techniques and Technologies 
• Biometrics, Smart Cards, and Memory Cards 
• Single Sign-On Technologies and Their Risks 
• Discretionary versus Mandatory Access Control 
Models 
• Rule-based and Role-based Access Control 
• Object Reuse Issues and Social Engineering 
• Emissions Security Risks and Solutions 
• Specific Attacks and Countermeasures

3. Cryptography 
• Historical Uses of Cryptography 
• Block and Stream Ciphers 
• Explanation and Uses of Symmetric Key Algorithms 
• Explanation and Uses of Asymmetric Key Algorithms 
• Public Key Infrastructure Components 
• Data Integrity Algorithms and Technologies 
• IPSec, SSL, SSH, and PGP 
• Secure Electronic Transactions 
• Key Management 
• Attacks on Cryptosystems

4. Physical Security 
• Facility Location and Construction Issues 
• Physical Vulnerabilities and Threats 
• Doors, Windows, and Secure Room Concerns 
• Hardware Metrics and Backup Options 
• Electrical Power Issues and Solutions 
• Fire Detection and Suppression 
• Fencing, Lighting, and Perimeter Protection 
• Physical Intrusion Detection Systems

5. Enterprise Security Architecture 
• Critical Components of Every Computer 
• Processes and Threads 
• The OSI Model 
• Operating System Protection Mechanisms 
• Ring Architecture and Trusted Components 
• Virtual Machines, Layering, and Virtual Memory 
• Access Control Models 
• Orange Book, ITSEC, and Common Criteria 
• Certification and Accreditation 
• Covert Channels and Types of Attacks 
• Buffer Overflows and Data Validation Attacks

6. Business Continuity Planning 
• Roles and Responsibilities 
• Liability and Due Care Issues 
• Business Impact Analysis 
• Identification of Different Types of Threats 
• Development Process of BCP 
• Backup Options and Technologies 
• Types of Offsite Facilities 
• Implementation and Testing of BCP

7. Telecommunications, Networks, and Internet 
Security 
• TCP\IP Suite 
• LAN, MAN, and WAN Topologies and Technologies 
• Cable Types and Issues 
• Broadband versus Baseband Technologies 
• Ethernet and Token Ring 
• Network Devices 
• Firewall Types and Architectures 
• Dial-up and VPN Protocols 
• DNS and NAT Network Services 
• FDDI and SONET 
• X.25, Frame Relay, and ATM 
• Wireless LANs and Security Issues 
• Cell Phone Fraud 
• VoIP 
• Types of Attacks

8. Law, Investigation, and Ethics 
• Different Ethics Sets 
• Computer Criminal Profiles 
• Types of Crimes 
• Liability and Due Care Topics 
• Privacy Laws and Concerns 
• Complications of Computer Crime Investigation 
• Types of Evidence and How to Collect It 
• Forensics 
• Legal Systems

9. Applications & Systems Development 
• Software Development Models 
• Prototyping and CASE Tools 
• Object-Oriented Programming 
• Middleware Technologies 
• ActiveX, Java, OLE, and ODBC 
• Database Models 
• Relational Database Components 
• CGI, Cookies, and Artificial Intelligence 
• Different Types of Malware

10. Operations Security 
• Operations Department Responsibilities 
• Personnel and Roles 
• Media Library and Resource Protection 
• Types of Intrusion Detection Systems 
• Vulnerability and Penetration Testing 
• Facsimile Security 
• RAID, Redundant Servers, and Clustering   
 

Share Sorry this Training Listing has Expired

Related Course/Trainings

Administering Windows Server 2012(20-411)

Administering Windows Server 2012(20-411)

Makintouch Consulting Lagos Fulltime

₦60,000
Certified Ethical Hacker (CEH)

Certified Ethical Hacker (CEH)

Makintouch Consulting Lagos Fulltime

₦80,000

Latest Jobs in Nigeria Today - Ngcareers

Ngcareers.com is Nigeria's top job search, recruitment and career website. We provide you the latest jobs and vacancies in Nigeria today.

As a job seeker you can search for jobs from latest and verified job adverts and career information from employers and recruiters in all Nigerian states. You can upload/create your resume to improve your visibility.

Our job services are FREE for job seekers. You can subscribe to Ngcareers via: Email, Facebook, Twitter.