Introduction:

This course is designed for those working on or already have positions as Senior Network Security Engineers, Senior Security Systems Analysts or Senior Security Administrators. The SSCP class focuses on the seven domains from the (ISC)² Common Book of Knowledge, and is a strong starting point for those interested in continuing further in an information security career. SSCP certification requires passing the SSCP exam (administered separately). Successful applicants for SSCP certification must have at least one year of direct, full-time security experience in one or more of the seven domains of the (ISC)² CBK.

Customize it:

This 5-6-day SSCP course will be customized to your needs and specifications. Eno.com will assist you in identifying those needs and specifications. A word to the wise, there are many vendors of SSCP training. They will typically have a broad and general course, one size fits all, already developed and just put your organization’s name on the title slide. This minimizes their effort and time investment. At Eno.com, every course is made to your exact and exacting specifications. We help you ensure what you are getting is what you really need even if at the beginning you weren’t too sure of what that was. We fit the class to your needs. We never fit you into our “standard”, one size fits all, class.

Objectives:

What you'll learn:: In-depth coverage of the seven domains-required to pass the SSCP Exam: Access Controls Security Operations and Administration Analysis and Monitoring Cryptography Networks and Telecommunications Malicious Code/Malware Risk, Response, and Recovery

Course Outline

1. Testing-Taking Tips and Study Techniques Preparation for the SSCP Exam Submitting Required Paperwork Resources and Study Aids Passing the Exam the First Time 2. Security Operations and Administration Change Control/Configuration Management Dual Control, Separation of Duties, Rotation of Duties Vulnerability Assessment and Pen-Testing 3. Access Controls AAA Authentication Methods (Types 1, 2, & 3) Authorization - DAC, RBAC, MAC Accounting - Logging, Monitoring, Auditing Central/Decentralized and Hybrid Management Single Sign-On - Kerberos, Radius, Diameter, TACACS Vulnerabilities - Emanations, Impersonation, Rouge Infrastructure, Social Engineering 4. Cryptography Intro/History Symmetric Asymmetric Hashing Cryptosystems - SSL, S/MIME, PGP PKI Cryptanalysis 5. Malicious Code and Malware Layering, Data Hiding, and Abstraction Database Security AI OOD Mobil Code Malware Architecture Problems - Covert Channels + TOC/TOU, Object Reuse Network Vulnerabilities 6. Networks and Telecommunications OSI/DoD TCP/IP Models TCP/UDP/ICMP/IP Ethernet Devices - Routers/Switches/Hubs Firewalls Wireless WAN Technologies - X.25/Frame Relay/PPP/ISDN/DSL/Cable Voice - PBX/Cell Phones/VOIP IPSec 7. Risk, Response, and Recovery CIA Roles and Responsibilities - RACI Asset Management Taxonomy - Information Classification Risk Management Policies, Procedures, Standards, Guidelines, Baselines Knowledge Transfer - Awareness, Training, Education BIA Policy BIA Roles and Teams Data Backups, Vaulting, Journaling, Shadowing Alternate Sites Emergency Response Required notifications BIA Tests 8. Analysis and Monitoring Ethics - Due Care/Due diligence Intellectual Property Incident Response Forensics Evidence Laws - HIPAA, GLB, SOX 9. Review and Q&A Session Final Review and Test Prep

For organizational purchases, please send us a message at salesinfo@eno.com or complete and submit this form .

Other Expertise:

Oracle Applications Training and Consulting Peoplesoft Applications Training and Consulting SAP Applications Training and Consulting Security Technologies Training and Consulting Telecommunications Training and Consulting Wireless Technology Training and Consulting