Certified Information Systems Security Professional
Course Duration: 5 consecutive days
Course Price: Please check our partner for the best price today
Get the Premier Cyber Security Certification
You live and work on the forefront of information security. Every day malicious hackers grow smarter. You always have to stay one step ahead to keep your company safe.
Prove you have what it takes with the CISSP certification!
This cyber security certification is an elite way to demonstrate your knowledge, advance your career and become a member of a community of cyber security leaders. It shows you have all it takes to design, engineer, implement and run an information security program.
The CISSP is an objective measure of excellence. It’s the most globally recognised standard of achievement in the industry. And this cyber security certification was the first information security credential to meet the strict conditions of ISO/IEC Standard 17024.
Are you up for the challenge?
The CISSP exam tests your competence in eight domains. Think of the domains as specific knowledge areas you need to know based on your experience and education.
The CISSP Domains
The domains draw from a range of information security topics within the (ISC)² Common Body of Knowledge (CBK).
Here’s a closer look at the CISSP domains and how they’re weighted on the exam:
[table id=5 /]Security and Risk Management
Confidentiality, integrity and availability concepts
Security governance principles
Compliance
Legal and regulatory issues
Professional ethics
Security policies, standards, procedures and guidelines
Asset Security
Information and asset classification
Ownership (e.g., data owners, system owners)
Protect privacy
Appropriate retention
Data security controls
Handling requirements (e.g., markings, labels, storage)
Security Engineering
Engineering processes using secure design principles
Fundamental concepts of security models
Security evaluation models
Security capabilities of information systems
Security architectures, designs and solution elements vulnerabilities
Web-based systems vulnerabilities
Mobile systems vulnerabilities
Embedded devices and cyber-physical systems vulnerabilities
Cryptography
Site and facility design secure principles
Physical security
Communication and Network Security
Secure network architecture design (e.g., IP & non-IP protocols, segmentation)
Secure network components
Secure communication channels
Network attacks
Identity and Access Management
Physical and logical assets control
Identification and authentication of people and devices
Identity as a service (e.g., cloud identity)
Third-party identity services (e.g., on-premise)
Access control attacks
Identity and access provisioning life-cycle (e.g., provisioning review)
Security Assessment and Testing
Assessment and test strategies
Security process data (e.g., management and operational controls)
Security control testing
Test outputs (e.g., automated, manual)
Security architecture vulnerabilities
Security Operations
Investigations support and requirements
Logging and monitoring activities
Provisioning of resources
Foundational security operations concepts
Resource protection techniques
Incident management
Preventative measures
Patch and vulnerability management
Change management processes
Recovery strategies
Disaster recovery processes and plans
Business continuity planning and exercises
Physical security
Personnel safety concerns
Software Development Security
Security in the software development life-cycle
Development environment security controls
Software security effectiveness
Acquired software security impact
Exam Details
Length of exam | Up to 6 hours |
---|---|
Number of questions | 250 questions |
Question format | Multiple choice and advanced innovative questions |
Passing grade | A passing score is 700 out of 1000 points |
Exam Languages |
|
Testing Centre | Pearson VUE Testing Centre |
Check Availability |
---|