000-00 Certified Information Systems Security Professional (CISSP)
Certified Information Systems Security Professional (CISSP)
Over deze cursus:
Het CISSP-traject kent drie onderdelen met in elk deel een training en een assessment. Elk deel bestaat uit een pre-course mentorship. Hierdoor bent u klaar voor de intensieve en snelle trainingstructuur. De tijd om het mentorship af te ronden wordt bepaald door de motivatie, de leermethode van de cursist en de beschikbare tijdsinvestering van de cursist.
Deel 1: Zelfstudie
Voorbereiding cursus - online studie met volledige engelstalige mentoring, support en virtual classrooms.
Deel 2: Training 5 dagen
In dit deel wordt ingegaan op de begripsvorming inzake de 10 beveiligingsdomeinen en de relatie tot Confidentiality, Integrity & Availability (de CIA-driehoek).
Deze 10 domeinen worden behandeld in een sessie van 5 dagen. Per dag worden 2 domeinen behandeld. Aan het einde van de week bent u klaar voor deel 3. Hierin ligt de focus op het herhalen en testen van de behandelde stof.
Deel 3: Voorbereiding examen
Na de klassikale training (deel 2), krijgt u toegang tot de exclusieve web-based testvragen, welke dienen als voorbereiding op het ISC2 CISSP examen. Het examen bestaat uit 250 vragen. Deze vragen dienen binnen 6 uur gemaakt te worden.
000-00 Certified Information Systems Security Professional (CISSP)
- Doel
- Wanneer u de certificering behaalt, mag u de titel CISSP achter uw naam gebruiken. Deze certificering is wereldwijd erkend en gevraagd.
- Doelgroep
- (Senior) security officers, security managers, ICT-netwerk/ systeembeheerders, - architecten, -managers, -juristen, -adviseurs en consultants, IB-functionarissen, risk managers en EDP Auditors.
- Duur
- 5 dagen training plus zelfstudie
- Prijs
- € 5.050,-- excl. BTW
- Voorkennis
- HBO+ opleidingsniveau. Minimaal 5 jaar werkervaring in 2 van de 10 CISSP domeinen uit de Common Body of Knowledge (CBK). In het bezit van een certificering uit de door (ISC)2 goedgekeurde Credential list.
- Vorm
- Klassikaal, Open rooster
- Vervolgopleidingen
- -
- Bijzonderheden
- -
000-00 Certified Information Systems Security Professional (CISSP)
Certified Information Systems Security Professional
The CISSP domains are drawn from various information security topics within the (ISC)² CBK. The CISSP CBK consists of the following ten domains:
Access Control - a collection of mechanisms that work together to create security architecture to protect the assets of the information system.
- Concepts/methodologies/techniques
- Effectiveness
- Attacks
Telecommunications and Network Security - discusses network structures, transmission methods, transport formats and security measures used to provide availability, integrity and confidentiality.
- Network architecture and design
- Communication channels
- Network components
- Network attacks
Information Security Governance and Risk Management - the identification of an organization’s information assets and the development, documentation and implementation of policies, standards, procedures and guidelines.
- Security governance and policy
- Information classification/ownershipContractual agreements and procurement processes
- Risk management concepts
- Personnel security
- Security education, training and awareness
- Certification and accreditation
Software Development Security - refers to the controls that are included within systems and applications software and the steps used in their development.
- Systems development life cycle (SDLC)
- Application environment and security controls
- Effectiveness of application security
Cryptography - the principles, means and methods of disguising information to ensure its integrity, confidentiality and authenticity.
- Encryption concepts
- Digital signatures
- Cryptanalytic attacks
- Public Key Infrastructure (PKI)
- Information hiding alternatives
Security Architecture and Design - contains the concepts, principles, structures and standards used to design, implement, monitor, and secure, operating systems, equipment, networks, applications, and those controls used to enforce various levels of confidentiality, integrity and availability.
- Fundamental concepts of security models
- Capabilities of information systems (e.g. memory protection, virtualization)
- Countermeasure principles
- Vulnerabilities and threats (e.g. cloud computing, aggregation, data flow control)
Operations Security - used to identify the controls over hardware, media and the operators with access privileges to any of these resources.
- Resource protection
- Incident response
- Attack prevention and response
- Patch and vulnerability management
Business Continuity and Disaster Recovery Planning - addresses the preservation of the business in the face of major disruptions to normal business operations.
- Business impact analysis
- Recovery strategy
- Disaster recovery process
- Provide training
Legal, Regulations, Investigations and Compliance - addresses computer crime laws and regulations; the investigative measures and techniques which can be used to determine if a crime has been committed and methods to gather evidence.
- Legal issues
- Investigations
- Forensic procedures
- Compliance requirements/procedures
Physical (Environmental) Security - addresses the threats, vulnerabilities and countermeasures that can be utilized to physically protect an enterprise’s resources and sensitive information.
- Site/facility design considerations
- Perimeter security
- Internal security
- Facilities security
000-00 Certified Information Systems Security Professional (CISSP)
Certified Information Systems Security Professional (CISSP)
Inschrijven kan middels het Inschrijfformulier
Over Tailor iT Training
- Wie zijn wij?
- Waarin onderscheiden wij ons?
- Het Nieuwe Werken
- Maatwerktrainingen
- Incompany trainingen
- Computertrainingen
Hulp en ondersteuning
Handig
- Vrijblijvend reserveren
- Opleidingsplan maken
- MS Office migratie
- Office vergelijkingstool
- Oefenbestanden
- Tips & Trucs
- Quick Reference Cards