CISSP Certification Training

Course Duration

5 Days

Audience

Employees of federal, state and local governments; and businesses working with the government.

Prerequisites

A minimum of five years of cumulative, paid, full-time work experience in two or more of the eight CISSP domains is recommended.

Course Description

The Certified Information Systems Security Professional (CISSP) is one of the most respected and globally recognized certifications in the information security field. IT Dojo CISSP certification prep is taught by seasoned security practitioners who bring real-world experience into every session. Rather than teaching to the test, our instructors focus on helping you genuinely understand the material, building the depth of knowledge required not only to pass the exam but to apply it on the job. The CISSP exam covers eight domains of the ISC2 Common Body of Knowledge, and our course addresses each domain thoroughly with a blend of lecture, discussion, and practical examples drawn from government and enterprise environments.

Learning Objectives

• Understand and apply the concepts and practices of all eight CISSP CBK domains.
• Analyze and evaluate security risks, threats, and vulnerabilities.
• Design and implement secure architectures and network environments.
• Apply access control, cryptography, and identity management principles.
• Understand legal, regulatory, and compliance requirements affecting information security.
• Prepare thoroughly and confidently for the CISSP examination.

Course Outline

Domain 1 - Security and Risk Management

• Security Governance Principles
• Compliance and Legal Regulations
• Risk Management Concepts
• Threat Modeling
• Business Continuity Planning

Domain 2 - Asset Security

• Information and Asset Classification
• Data Security Controls
• Privacy Protection

Domain 3 - Security Architecture and Engineering

• Secure Design Principles
• Security Models and Frameworks
• Cryptography
• Physical Security

Domain 4 - Communication and Network Security

• Secure Network Architecture
• Network Protocols and Attacks
• Secure Communication Channels

Domain 5 - Identity and Access Management

• Physical and Logical Access Control
• Identity Management
• Authentication and Authorization Mechanisms

Domain 6 - Security Assessment and Testing

• Assessment and Test Strategies
• Security Control Testing
• Collecting Security Data and Audit Reports

Domain 7 - Security Operations

• Investigations and Forensics
• Incident Management
• Disaster Recovery
• Patch and Vulnerability Management

Domain 8 - Software Development Security

• Security in the SDLC
• Development Environment Security
• Software Security Effectiveness

Frequently Asked Questions