CISSP-ISSEP Certification Prep Course

Duration:

4 days

Audience:

Employees of federal, state and local governments; and businesses working with the government.

Cours Description:

Those who hold a CISSP certification can advance their skillset through the practical application of systems engineering principles and processes to develop secure systems, analyze organization needs, define security requirements, design security architecture, develop secure designs, implement system security, and support system security assessment and authorization for government and industry. Students will learn how the risk management framework processes are applied and integrated with systems security engineering to protect organization information.

This course is your one source for exam preparation that includes:

  • Official (ISC)2 Guide to the CISSP-ISSEP Common Body of Knowledge® (CBK)
  • Official (ISC)2 CISSP-ISSEP Training Handbook
  • Official (ISC)2 CISSP-ISSEP Flash Cards
  • CISSP-ISSEP Certification Exam Voucher

What You’ll Learn

In-depth coverage of the four domains required to pass the CISSP-ISSEP exam:

  1. U.S. Government Information Assurance (IA)-Related Policies and Issuances
  2. Certification and Accreditation (C&A)/Risk Management Framework (RMF)
  3. Technical Management
  4. ISSE-Systems Security Engineering

 Who Needs to Attend

  • CISOs
  • Directors
  • Managers
  • Supervisors
  • Analysts
  • Cryptographers
  • Cyber architects
  • Information assurance engineers
  • Individuals pursuing CISSP-ISSEP® certification

Prerequisites

At least two years of recent full-time security professional work experience in systems security engineering

Course Outline

1. Domain 1: U.S. Government Information Assurance (IA)-Related Policies and Issuances

  • Welcome to the U.S. Government IA-Related Policies and Issuances Domain
  • Applicable National Laws and Policies
  • Department of Defense (DoD) Regulations
  • National Security Systems: Committee on National Security Systems (CNSS)/ National Security Telecommunications and Information Systems Security Policy (NSTISSP) Regulations
  • Regulations for Everyone: Public Laws, FIPS, and Special Publications
  • IA Regulations
  • Definitions and Self-Study Materials

2. Domain 2: Certification and Accreditation (C&A)/Risk Management Framework (RMF)

  • Welcome to the C&A/RMF Domain
  • Integrating C&A/RMF Processes Into Systems Security Engineering
  • U.S. Government Certification and Accreditation Process
  • Managing Security and Risk in Information Systems
  • Definitions and Self-Study Materials

3. Domain 3: Technical Management

  • Welcome to the Technical Management Domain
  • The Support and Acquisition Process
  • Technical Effort Project Initiation
  • Project Planning
  • Technical Effort Implementation and Management
  • Closing the Technical Effort
  • Definitions and Self-Study Materials

4. Domain 4: ISSE-Systems Security Engineering

  • Welcome to the ISSEP-Systems Security Engineering Domain
  • Security Engineering vs. Systems Engineering
  • Discover Information Protection Needs/Conduct a Mission Needs Analysis: Activity 1
  • Define System Security Requirements: Activity 2
  • Define System Security Architecture: Activity 3
  • Develop Detailed Security Systems Design: Activity 4
  • Implement System Security: Activity 5
  • Definitions and Self-Study Materials