CISSP Boot Camp
Kursavgift: kr 25 000 | Varighet: 5 dager
The Bootcamp is designed for experienced security Professionals who wish to attain
(ISC)2 CISSP certification and should not be taken lightly. Students must have at least
2 - 5 years’ experience in the field of Security.
About Andy Malone - instructor on this course
Andy Malone is a world class technology instructor and consultant. He is Microsoft MVP (Microsoft Most Valuable Professional) in Enterprise Security for 8 years, and instructor on a broad range of Security areas (CISSP, Comptia Security +, Cyber-Security & Awareness Training, Computer Forensics Training).
Andy is a veteran conference speaker at prestigious events as Microsoft TechEd North America, Europe, Middle East & Africa, NIC, Windows Connections
and Cybercrime. Andy`s passionate style of delivery, combined with a sense of fun has become his
trademark and has won him great acclaim.
Attending Andy`s classes you will learn about Microsoft’s Technologies and get hands on experience, but you will also get a wealth of knowledge, skills and additional “extras” which include whitepapers, tips, tricks, tools and a whole lot more! For 2013/14 Andy is scheduled to deliver content in Europe, the Middle East, Africa and the US to name but a few.
Follow Andy on Twitter @AndyMalone
Pre-requisites for the training:
There are no specific requirements, but we assume that participants know the basic concepts, standards and framework within IT Security. A background from technical IT security
in networking, web security, cryptografi, authentication or background architecture / design
of systems within IT is useful. The course spans wide across many different areas, and knowledge from one or more areas within security is a definite advantage.
Pre-requisites for the exam:
You need to document a minimum of 5 years experience within at least 2 of the 10 knowledge areas in the CISSP curriculum, to be CISSP certified.
The CISSP draws from a comprehensive, up-to-date, global common body of knowledge that ensures
security leaders have a deep knowledge and understanding of new threats, technologies, regulations,
standards, and practices. The CISSP exam tests ones competence in the 8 domains of the CISSP CBK,
- Domain 1: Security and Risk Management (Security, Risk, Compliance, Law, Regulations, Business Continuity)
- Domain 2: Asset Security (Protecting Security of Assets)
- Domain 3: Security Engineering (Engineering and Management of Security)
- Domain 4: Communications and Network Security (Designing and Protecting Network Security)
- Domain 5: Identity and Access Management (Controlling Access and Managing Identity)
- Domain 6: Security Assessment and Testing (Designing, Performing, and Analyzing Security Testing)
- Domain 7: Security Operations (Foundational Concepts, Investigations, Incident Management, Disaster
- Domain 8: Software Development Security (Understanding, Applying, and Enforcing Software Security)
- Module 9: CISSP Test Review
- Module 10: CISSP Exam Preparation & Review Questions
- Understand and apply the concepts of risk assessment, risk analysis, data classification, and security awareness and Implement risk management and the principles used to support it(Risk avoidance, Risk acceptance, Risk mitigation, Risk transference)
- Apply a comprehensive and rigorous method for describing a current and/or future structure and behavior for an organizations security processes, information security systems, personnel, and organizational sub-units so that these practices and processes align with the organizations core goals and strategic direction and address the frameworks and policies, concepts, principles, structures, and standards used to establish criteria for the protection of information assets, as well as to assess the effectiveness of that protection and establish the foundation of a comprehensive and proactive security program to ensure the protection of an organizations information assets
- Apply a comprehensive and rigorous method for describing a current and/or future structure and behavior for an organizations security processes, information security systems, personne, and organizational sub-units so that these practices and processes align with the organizations core goals and strategic direction and examine the principles, means, and methods of applying mathematical algorithms and data transformations to information to ensure its integrity, confidentiality, and authenticity
- Understand the structures, transmission methods, transport formats, and security measures used to provide confidentiality, integrity, and availability for transmissions over private and
- Public communications networks and media and identify risks that can be quantitatively and qualitatively measured to support the building of business cases to drive proactive security in the enterprise.
- Offer greater visibility into determining who or what may have altered data or system information, potentially affecting the integrity of those asset and match an entity, such as a person or a computer system, with the actions that entity takes against valuable assets, allowing organizations to have a better understanding of the state of their security posture.
- Plan for technology development, including risk, and evaluate the system design against mission requirements, and identify where competitive prototyping and other evaluation techniques fit in the process
- Protect and control information processing assets in centralized and distributed environments and execute the daily tasks required to keep security services operating reliably and efficiently. Understand the Software Development Life Cycle (SDLC) and how to apply security to it, and identify which security control(s) are appropriate for the development environment, and assess the effectiveness of software security.
The CISSP exam is not included in the CISSP training, but you may book and take the exam at Glasspaper`s test centers.
The cost for the CISSP exam is NOK 4995,- + MVA
This course, along with previous experience and rigorous self-study will help prepare you to take the following (ISC)2 certification exam CISSP.
Candidates for the CISSP must meet several requirements:
- Possess a minimum of five years of direct full-time security work experience in two or more of the ten (ISC)² information security domains (CBK). One year may be waived for having either a four-year college degree, a Masters degree in Information Security, or for possessing one of a number of other certifications from other organizations. A candidate not possessing the necessary five years of experience may earn the Associate of (ISC)² designation by passing the required CISSP examination. The Associate of (ISC)² for CISSP designation is valid for a maximum of six years from the date (ISC)² notifies the candidate of having passed the exam. During those six years a candidate will need to obtain the required experience and submit the required endorsement form for certification as a CISSP. Upon completion of the professional experience requirements the certification will be converted to CISSP status.
- Attest to the truth of their assertions regarding professional experience and accept the CISSP Code of Ethics.
- Answer four questions regarding criminal history and related background.
- Pass the CISSP exam with a scaled score of 700 points or greater out of 1000 possible points. The exam is multiple choice, consisting of 250 questions with four options each, to be answered over a period of six hours. 25 of the questions are experimental questions which are not graded.
- Have their qualifications endorsed by another CISSP in good standing. The endorser attests that the candidates assertions regarding professional experience are true to the best of their knowledge, and that the candidate is in good standing within the information security industry.
Read more about CISSP certification