CISSP Certification Training

The CISSP Certification Training aim to provide delegates with a comprehensive understanding of Information Security Management and the eight CISSP domains, including:

Security and Risk Management: Understand the fundamental principles of security and risk management, including security governance, risk assessment, and mitigation strategies.
Asset Security: Learn how to classify, handle, and protect sensitive information and assets, including data classification, labeling, and storage.
Security Engineering: Study the principles of security engineering, including secure design, development, and implementation of systems, applications, and infrastructure.
Communication and Network Security: Understand the principles of secure communication and network security, including network architecture, protocols, and security measures.
Identity and Access Management: Learn how to design, implement, and manage identity and access management systems, including authentication, authorization, and accounting (AAA) protocols.
Security Assessment and Testing: Understand the principles of security assessment and testing, including vulnerability assessment, penetration testing, and security audits.
Security Operations: Study the principles of security operations, including incident response, disaster recovery, and business continuity planning.
Software Development Security: Learn how to design, develop, and implement secure software applications, including secure coding practices and secure development lifecycle.

The CISSP Certification Training is a rigorous and comprehensive program designed to prepare professionals for the esteemed Certified Information Systems Security Professional (CISSP) exam.

 This course delves into the critical topics in Information Security, covering all 8 domains defined by (ISC)², the global leader in information security certifications.

Day One

Security and Risk Management

• Understand, adhere to, and promote professional ethics
• Understand and apply security concepts
• Evaluate and apply security governance principles .
• Determine compliance and other requirements .
• Understand legal and regulatory issues that pertain to information security in a holistic context
• Develop, document, and implement security policy, standards, procedures, and guidelines
• Identify, analyze, and prioritize Business Continuity (BC) requirements
• Contribute to and enforce personnel security policies and procedures
• Understand and apply risk management concepts .
• Understand and apply threat modeling concepts and methodologies
• Apply Supply Chain Risk Management (SCRM) concepts
• Establish and maintain a security awareness, education, and training program .

Day Two

Asset Security

• Identify and classify information and assets .
• Establish information and asset handling requirements .
• Provision resources securely .
• Manage data lifecycle .
• Ensure appropriate asset retention (e.g., End-of-Life (EOL), End-of-Support (EOS))
• Determine data security controls and compliance requirements .

Day Three

Security Architecture and Engineering

• Research, implement and manage engineering processes using secure design principles .
• Understand the fundamental concepts of security models (e.g., Biba, Star Model, Bell-LaPadula) .
• Select controls based upon systems security requirements .
• Understand security capabilities of Information Systems (IS) (e.g., memory protection, Trusted Platform Module (TPM), encryption/decryption) .
• Assess and mitigate the vulnerabilities of security architectures, designs, and solution elements .
• Select and determine cryptographic solutions .
• Understand methods of cryptanalytic attacks .
• Apply security principles to site and facility design .
• Design site and facility security controls .

Day Four

Communication and Network Security

• Assess and implement secure design principles in network architectures .
• Secure network components .
• Implement secure communication channels according to design.

Day Five 

Identity and Access Management (IAM)

• Control physical and logical access to assets.
• Manage identification and authentication of people, devices, and services.
• Federated identity with a third-party service .
• Implement and manage authorization mechanisms .
• Manage the identity and access provisioning lifecycle .
• Implement authentication systems .

Day Six

Identity and Access Management (IAM)

• Design and validate assessment, test, and audit strategies .
• Conduct security control testing .
• Collect security process data (e.g., technical and administrative) .
• Analyze test output and generate report .
• Conduct or facilitate security audits .

Day Seven 

Security Operations

• Understand and comply with investigations
• Conduct logging and monitoring activities
• Perform Configuration Management (CM) (e.g., provisioning, baselining, automation).

• Apply foundational security operations concepts
• Apply resource protection
• Conduct incident management .
• Operate and maintain detective and preventative measures .
• Implement and support patch and vulnerability management
• Understand and participate in change management processes
• Implement recovery strategies
• Implement Disaster Recovery (DR) processes
• Test Disaster Recovery Plans (DRP)
• Participate in Business Continuity (BC) planning and exercises
• Implement and manage physical security
• Address personnel safety and security concerns

Day Eight  

Software Development Security

• Understand and integrate security in the Software Development Life Cycle (SDLC) .
• Identify and apply security controls in software development ecosystems
• Assess the effectiveness of software security
• Assess security impact of acquired software
• Define and apply secure coding guidelines and standards

CISSP Exam Preparation: The course is specifically designed to prepare participants for the CISSP exam, increasing their chances of success.
Enhanced Career Prospects: CISSP certification is a highly respected and sought-after credential in the industry, opening up new career opportunities and advancement possibilities.
Improved Job Performance: Participants will gain the knowledge and skills needed to design, implement, and manage effective information security systems, improving their job performance and contributing to their organization’s success.
Networking Opportunities: The course provides a platform for participants to network with peers and industry experts, sharing knowledge and best practices.

UAE – United Arab Emirates

KSA , EGYPT , Kuwait

• 5 Years of Relevant Work Experience
• Attend Relevant Courses such as the CISSP Training Course
• Study the CISSP CBK
• Pass the CISSP Exam