Audiences & Objectives

The CISSP provides a ‘helicopter view’ of all domains in information security and how they interconnect. The CISSP CBK (Common Body of Knowledge) establishes a common framework of information security terms and principles that allow information security professionals worldwide to discuss, debate and resolve matters pertaining to the profession with a common understanding. It is fundamentally based on the CIA triad, the core information security and assurance tenets: confidentiality, integrity and availability and attempts to balance the three across ten domains. It benefits security officers/ managers, risk managers, IT- Auditors, senior network/ system engineers, IT Architects and IT- Managers. After attending this training they will:

• Have a thorough understanding of the mindset of the security practitioner, a ‘helicopter view’ of the CISSP knowledge domains and how they interconnect with each other 
• Have evaluated available mechanisms and methods used to control what subjects can access, the extend of their capabilities after authorization and authentication, and the auditing and monitoring of these activities  
• Have examined the security components within operating systems and applications and how to best develop and measure their effectiveness 
• Have learned the principles of preservation of business activities when faced with disruptions or disasters/ Have examined methods and techniques for disguising data for protection purposes 
• Be aware of the increasing attention and role of [IT-] Governance and the need for organizations to ensure that current and evolving risks are identified as well as providing transparency on how these risks are being managed  
• Understand the proper interaction of Information Security Governance, Risk & IT Controls 
• Have learned about [investigation of] computer crimes, laws and regulations 
• Have examined control over personnel, hardware, systems and auditing and monitoring techniques 
• Have examined key concepts, principles and standards for designing and implementing secure applications, operating systems and systems
• Have examined internal, external, public and private communication systems; networking structures; devices; protocols; and remote access and administration