(ISC)² CISSP Online Certification Training

In this intermediate (ISC)² skills training, Keith Barker and Ben Finkel cover the CISSP methodology objectives in the CISSP exam, which is the one required exam to earn the CISSP certification.

The CISSP is one of the most valued certifications available to IT security professionals — and employers. There’s a reason for that. CISSP not only validates that you have the skills necessary to design, implement, and maintain your organization’s cybersecurity programs. The CISSP also validates that you have the experience, too. (ISC)² maintains a stringent qualification regime for all its certifications, which includes required documented work experience and a sponsorship. For the CISSP, you’ll need to show a minimum of five (5) years cumulative paid work experience in two or more of the eight domains of the CISSP CBK.

After finishing this CISSP Certification training, you'll have a broad understanding of the eight domains of the CISSP CBK, be ready to take on the CISSP exam, and be in a good position to move into more senior-level security roles.

For anyone who leads an IT team, this (ISC)² training can be used for CISSP exam prep, onboarding new security professionals, individual or team training plans, or as a (ISC)² reference resource.

CISSP Certification Training: What You Need to Know

This CISSP training maps to the CISSP methodology exam objectives and covers topics such as:

Confidentiality, integrity, and availability (CIA)
Cryptography, such as symmetric, asymmetric, Public Key Infrastructure (PKI), and digital signatures
Asset classification, data classification, and data security controls
Network security, such as Network Access Control (NAC) devices and endpoint security
Identity and Access Management (IAM) and authorization, such as RBAC, MAC, and DAC
Vulnerability assessments, penetration testing, disaster recovery (DR), and business continuity (BC)
Logging and monitoring, such as intrusion detection (IDS), intrusion prevention (IPS), and SIEM
Backup storage strategies and recovery site strategies
Software Development Life Cycle (SDLC), including change management

Who Should Take CISSP Certification Training?

This CISSP certification training is considered professional-level (ISC)² training, which means it was designed for security professionals. This CISSP methodology skills course is designed for security professionals with at least five years of experience with security policies and management.

New or aspiring security professionals. If you’re a security professional who is new to the field, you’re probably starting to become aware of just how broad and deep the pool of potential knowledge is in this career field. You’ll need expertise in risk management and asset security, architecture and engineering, communication and network security, and much more. Considering the experience requirements for the CISSP, you may not be able to get certified now, but that doesn’t mean you won’t learn a lot from this training.

Experienced security professionals. If you’re a security professional with several years under your belt and you want to prove your mastery of the career field, you should be seriously planning to earn the Certified Information Systems Security Professional (CISSP) certification. This training covers the length and breadth of the certifying exam’s topics -- penetration testing, cryptography, network security and vulnerability assessment. Learn the details of expert digital security and prepare for your CISSP exam.

Skill:
Security Crime Investigations and the Data lifecycle
- 1. Overview
  1 min
- 2. Types of Investigations
  6 mins
- 3. Evidence and the Investigation Process
  6 mins
- 4. Types of Computer Crimes
  7 mins
- 5. ISC2 Code of Ethics
  5 mins
- 6. Asset Management
  5 mins
- 7. Data Roles
  4 mins
- 8. Managing the Data Lifecycle
  14 mins
- 9. Conclusion
  1 min
Skill:
Security Design and Attacks
- 1. Overview
  1 min
- 2. Secure Design Principals
  12 mins
- 3. Assess and Mitigate Vulnerabilities
  12 mins
- 4. Cryptanalytic Attacks
  16 mins
- 5. Resiliency Technologies
  9 mins
- 6. Communications and Network Security
  13 mins
- 7. Conclusion
  1 min
Skill:
Security Controls and Development
- 1. Overview
  1 min
- 2. Identity and Access Management (IAM)
  18 mins
- 3. Security Assessment and Testing
  6 mins
- 4. Security Operations
  18 mins
- 5. Managing Threats
  12 mins
- 6. Development Methodologies and Maturity Models
  7 mins
- 7. Securing Development Environments
  16 mins
- 8. Software Security
  5 mins
- 9. Conclusion
  1 min
Skill:
Information Security: Asset Security
- 1. Overview
  1 min
- 2. Classifying Assets and Information
  8 mins
- 3. Stewards and Custodians of Assets and Information
  7 mins
- 4. Protecting Privacy
  4 mins
- 5. Data Retention
  4 mins
- 6. Determining Security Controls
  5 mins
- 7. Data State and Resources for Security Control Frameworks
  2 mins
- 8. Information and Asset Handling Policies
  7 mins
- 9. Conclusion
  1 min
Skill:
Information Security: Security Architecture and Engineering
- 1. Overview
  1 min
- 2. Designing with Security in Mind
  6 mins
- 3. Security Model Fundamentals
  7 mins
- 4. System Security Requirements
  5 mins
- 5. Hardware and Firmware Security Capabilities
  6 mins
- 6. Assessing Vulnerabilities
  5 mins
- 7. Vulnerabilities in Web-Based Systems
  5 mins
- 8. Vulnerabilities in Mobile Systems
  4 mins
- 9. Vulnerabilities in Embedded Devices
  6 mins
- 10. Facility Design and Controls
  6 mins
- 11. Symmetric Encryption Concepts
  6 mins
- 12. Symmetric Keys and Algorithms
  4 mins
- 13. Asymmetric Encryption Concepts
  5 mins
- 14. Digital Signature Concepts
  6 mins
- 15. Hashing for Integrity
  5 mins
- 16. Asymmetrical Encryption with Email
  6 mins
- 17. PKI and Revoking Certificates
  4 mins
- 18. Power Considerations
  4 mins
- 19. Conclusion
  1 min
Skill:
Information Security: Communication and Network Security
- 1. Overview
  1 min
- 2. OSI and IP Models
  6 mins
- 3. IP Networking
  7 mins
- 4. Network Component Security
  7 mins
- 5. Virtualized Network Security Considerations
  4 mins
- 6. Securing Communications Channels
  8 mins
- 7. Conclusion
  1 min
Skill:
Information Security: Identity and Access Management (IAM)
- 1. Overview
  1 min
- 2. Identity Management (IdM)
  7 mins
- 3. AAA as Part of Our Controls
  6 mins
- 4. Centralized Authentication with RADIUS
  7 mins
- 5. Using LDAP with Directory Services
  4 mins
- 6. Multi-Factor Authentication Categories
  3 mins
- 7. Biometric Acceptance and Rejection Rates
  5 mins
- 8. Options for Biometric Authentication
  5 mins
- 9. DAC, MAC, and RBAC
  6 mins
- 10. IAM Provisioning Lifecycle
  8 mins
- 11. Conclusion
  1 min
Skill:
Information Security: Security Assessment and Testing
- 1. Overview
  1 min
- 2. Testing, Auditing, and Assessment Overview
  6 mins
- 3. Penetration Testing
  5 mins
- 4. Vulnerability Scans and Assessments
  3 mins
- 5. Reviewing and Testing Code
  6 mins
- 6. Security-Related Data Collection
  7 mins
- 7. Continuous Monitoring
  4 mins
- 8. Conclusion
  1 min
Skill:
Information Security: Security Operations
- 1. Overview
  1 min
- 2. Supporting Investigations
  3 mins
- 3. Types of Evidence
  4 mins
- 4. Chain of Custody
  4 mins
- 5. Forensics Process
  3 mins
- 6. Separation of Duties
  5 mins
- 7. Media Management
  5 mins
- 8. Backups
  7 mins
- 9. Logging with Separation of Duties
  7 mins
- 10. RAID Concepts
  3 mins
- 11. Incident Response Overview
  6 mins
- 12. Phases of Incident Handling
  3 mins
- 13. Improving Security with Configuration Management
  5 mins
- 14. Patch Management
  5 mins
- 15. Change Management
  10 mins
- 16. Comparing IDS and IPS
  4 mins
- 17. IDS and IPS Detection Methods
  4 mins
- 18. Network vs Host-Based IDS and IPS
  6 mins
- 19. IDS and IPS Alarms
  4 mins
- 20. Traditional and Next-Generation Firewalls
  4 mins
- 21. Categorizing Vulnerabilities with CVSS
  3 mins
- 22. Calculating Vulnerability Scores
  5 mins
- 23. Honeypots
  5 mins
- 24. Fault Tolerance for Availability
  4 mins
- 25. DR and Alternate Sites
  5 mins
- 26. H/W and S/W Planning for DR
  3 mins
- 27. Directing and Communicating DR
  6 mins
- 28. Personnel Safety and Security
  5 mins
- 29. Conclusion
  1 min
Skill:
Information Security: Software Development Security
- 1. Overview
  1 min
- 2. Software Development Security
  6 mins
- 3. Software Development Life Cycle (SDLC)
  7 mins
- 4. Change Management
  4 mins
- 5. Software Capability Maturity Model (CMMI)
  6 mins
- 6. Programming Concepts
  7 mins
- 7. Programming Methodology
  8 mins
- 8. Common Software Vulnerabilities
  8 mins
- 9. Conclusion
  1 min
Skill:
Information Security: Security and Risk Management
- 1. Overview
  1 min
- 2. CIA Concepts
  4 mins
- 3. Cyber Crime Terms and Vocabulary
  4 mins
- 4. 27000 Series Framework
  6 mins
- 5. Due Care and Due Diligence
  5 mins
- 6. Inside Threats and Ethics
  5 mins
- 7. Policies Start with Senior Management
  6 mins
- 8. Defining Risk
  4 mins
- 9. Control Types
  4 mins
- 10. Compliance Requirements
  6 mins
- 11. DR, BC, and BIA
  6 mins
- 12. Security Awareness Training
  5 mins
- 13. Intellectual Property and Licensing
  6 mins
- 14. Policy Life Cycle
  6 mins
- 15. Threat Modeling
  6 mins
- 16. Supply Chain Risk Management
  5 mins
- 17. Conclusion
  1 min

Loading transcripts...

Secure Design Principals

Access all premium content with a free week!

Start a free week

Course overview

1 HOURS OF TRAINING

SKILLS

VIDEOS

VIRTUAL LABS

1 PRACTICE EXAM

Bob Salmans

Nugget trainer since 2020

Read the full bio

What is it like to train with us?

Our learners say it best.

Helps me learn the skills I need when I need them

THOMAS S. | SYSTEMS ENGINEER & CONSULTANT

Read Reviews

(ISC)² CISSP – Certified Information Systems Security Professional FAQs: Cost, Training, Value

What will you learn in this information systems security management training?

This training teaches the skills and knowledge that are necessary to plan and manage an effective information systems security posture for an entire organization. This course covers broad managerial topics and deep technical familiarity with a wide range of organizational topics and IT/IS domains, including risk management, security architecture, development security and much more.

Who should take this information systems security professional course?

Although this course is accessible enough for pretty much anyone at any point in their career, it's not ideal for anyone and everyone. You should take this IS security management course if you're interested in managerial and operations planning for entire organizational domains, less so if you're positioning yourself as a technical expert.

Is this training in information systems security management associated with any certifications?

Yes, all the information you learn on this course about information systems security management and designing, engineering and managing the overall security posture of an organization is associated directly with the CISSP certification from (ISC)². The course follows the same learning objectives for the CISSP exam, so you'll be prepared for the job and the exam.

What certification should you consider after taking this course in information systems security design?

After you finish this course in information systems management and design, you should consider earning the Certified Information Systems Security Professional cert from (ISC)². The CISSP is a globally recognized information security management certification that demonstrates competency in eight different domains of enterprise IT/IS risk management and operations security.

Why should you take this information systems security management training?

You should take this course because there are hardly any other security management courses that take you through all eight domains of IT/IS risk management: security and risk management; asset security; security architecture and engineering; communication and network security; identity and access management; security assessment and testing; security operations; and software development security.

Certified in Risk and Information Systems Control (CRISC)

CompTIA CASP+ (CAS-004)

What is it like to train with us?

Our learners say it best.

(ISC)² CISSP – Certified Information Systems Security Professional FAQs: Cost, Training, Value

Let's chat!