Introduction:

The CISSP® is considered the global standard that proves an individual's proficiency in several security disciplines. The 5-day ENO CISSP® course provides comprehensive training in all 10 domains of the Common Body of Knowledge (CBK). The curriculum has been designed to meet a stringent set of criteria covering all essential elements necessary for thorough security today. It is targeted to professionals with at least five full years of experience in the information security field (waivers may apply), professional experience in two or more of the 10 CISSP domains, and is seen as a requirement for many technical, mid-management, and senior management positions. ENO CISSP® course teaches security policy development, secure software development procedures, network vulnerabilities, attack types and corresponding countermeasures, cryptography concepts and their uses, disaster recovery plans and procedures, risk analysis, crucial laws and regulations, forensics, computer crime investigation procedures, physical security, and more. Further, students will explore the contents and concepts that make up the diverse domains and learn how they work together to provide true in-depth defense..

Customize it:

This 5-6-day CISSP course will be customized to your needs and specifications. Eno.com will assist you in identifying those needs and specifications. A word to the wise, there are many vendors of CISSP training. They will typically have a broad and general course, one size fits all, already developed and just put your organization’s ame on the title slide. This minimizes their effort and time investment. At Eno.com, every course is made to your exact and exacting specifications. We help you ensure what you are getting is what you really need even if at the beginning you weren’t too sure of what that was. We fit the class to your needs. We never fit you into our “standard”, one size fits all, class.

Objectives:

In-depth coverage of the ten domains required to pass the CISSP exam:: Course Introduction Information Security and Risk Management Access Control Systems and Methodology Cryptography Physical (Environmental) Security Security Architecture and Design Legal, Regulations, Compliance, and Investigation Telecommunications and Network Security Business Continuity and Disaster Recovery Planning Applications Security Operations Security

Course Outline

1. Test-Taking Tips and Study Techniques Preparation for the CISSP Exam Submitting Required Paperwork Resources and Study Aids Passing the Exam the First Time 2. Operations Security Change Control/Configuration Management Dual Control, Separation of Duties, Rotation of Duties Vulnerability Assessment and Pen-Testing 3. Access Control AAA Authentication Methods (Types 1, 2, & 3) Authorization - DAC, RBAC, MAC Accounting - Logging, Monitoring, Auditing Central/Decentralized and Hybrid Management Single Sign-on - Kerberos, Radius, Diameter, TACACS Vulnerabilities - Emanations, Impersonation, Rouge Infrastructure, Social Engineering 4. Cryptography Intro - History Symmetric Asymmetric Hashing Cryptosystems - SSL, S/MIME, PGP PKI Cryptanalysis 5. Security Architecture and Design Layering, Data Hiding and Abstraction Processors Memory - Segmentation/Rings, Types of Memory Operating Systems Models Assurance - TCSEC, ITSEC, CC Architecture Problems - Covert Channels + TOC/TOU, Object Reuse 6. Telecommunications and Network Security OSI/DoD TCP/IP Models TCP/UDP/ICMP/IP Ethernet Devices - Routers/Switches/Hubs Firewalls Wireless WAN Technologies - X.25/Frame Relay/PPP/ISDN/DSL/Cable Voice - PBX/Cell Phones/VOIP IPSec Network Vulnerabilities 7. Application Security SDLC Change (Lifecycle) Management Database Security AI OOD Mobil Code Malware 8. Disaster Recovery and Business Continuity Policy Roles and Teams BIA Data Backups, Vaulting, Journaling, Shadowing Alternate Sites Emergency Response Required Notifications Tests 9. Legal, Regulations, Compliance, and Investigations Ethics - Due Care/Due Diligence Intellectual Property Incident Response Forensics Evidence Laws - HIPAA, GLB, SOX 10. Physical (Environmental) Security CPTED Facility Design Fire Safety Electrical Security HVAC Perimeter Security - Fences, Gates, Lighting Physical Access Control - Transponders, Badges, Swipe Cards Theft Intrusion Detection - CCTV, Alarms, Guards, & Dogs 11. Information Security and Risk Management CIA Roles and Responsibilities - RACI Asset Management Taxonomy - Information Classification Risk Management SDLC (Security Development Lifecycle) Certification and Accreditation Policies, Procedures, Standards, Guidelines, Baselines Knowledge Transfer - Awareness, Training, Education 12. Review and Q&A Session Final Review and Test Prep

For organizational purchases, please send us a message at salesinfo@eno.com or complete and submit this form .

Other Expertise:

Oracle Applications Training and Consulting Peoplesoft Applications Training and Consulting SAP Applications Training and Consulting Security Technologies Training and Consulting Telecommunications Training and Consulting Wireless Technology Training and Consulting