CISSP - New Horizons Training for CISSP Certification Course Outline | New Horizons Computer Learning Center of Baltimore | Computer Training in Baltimore, MD | Computer Training | Computer Learning in Baltimore | Computer Learning in Maryland | Computer Training in Baltimore | Computer Training in Maryland | IT Training in Baltimore | IT Training in Maryland | Cisco | ICND | CCNA | LAN | WAN | BSCI | BCMSN | ISCW | ONT | SND | SNRS | IPS | HIPS | CSVPN | IT Security | Information Security | Cisco Security Training

Home Business Solutions eLearning Room Rentals Resources About Us Careers Directions Contact Us

New Horizons Computer Learning Center
410-597-9722

New Horizons Training for CISSP Certification

Course Length: 5 Days

Overview:
CISSP training is an advanced course designed to meet the high demands of the information security industry by preparing students for the Certified Information Systems Security Professional (CISSP) exam. This certification is managed by the internationally recognized and highly prestigious International Information Systems Security Certifications Consortium ISC.

Prerequisites:
Students should have some experience with Information Security concepts and practices. To earn the CISSP® certification, 4 years of full-time experience in information security or 3 years plus a B.S. degree is required.

Course Content

Lesson 1: Information Security Governance and Risk Management

Types of Security Controls
Components of a Security Program
Security Policies, Standards, Procedures, and Guidelines
Risk Management and Analysis
Information Classification
Employee Management Issues
Threats, Vulnerabilities and Corresponding Administrative Controls
Security Management Practices Domain Review and Quiz

Lesson 2: Access Control

Identification, Authentication, and Authorization Techniques and Technologies
Biometrics, Smart Cards, and Memory Cards
Single Sign-On Technologies and Their Risks
Discretionary versus Mandatory Access Control Models
Rule-based and Role-based Access Control
Object Reuse Issues and Social Engineering
Emissions Security Risks and Solutions
Specific Attacks and Countermeasures
Access Control Systems and Methodology Domain Review and Quiz

Lesson 3: Cryptography

Historical Uses of Cryptography
Block and Stream Ciphers
Explanation and Uses of Symmetric Key Algorithms
Explanation and Uses of Asymmetric Key Algorithms
Public Key Infrastructure Components
Data Integrity Algorithms and Technologies
IPSec, SSL, SSH, and PGP
Secure Electronic Transactions
Key Management
Attacks on Cryptosystems
Cryptography Domain Review and Quiz

Lesson 4: : Physical (Environmental) Security

Facility Location and Construction Issues
Physical Vulnerabilities and Threats
Doors, Windows, and Secure Room Concerns
Hardware Metrics and Backup Options
Electrical Power Issues and Solutions
Fire Detection and Suppression
Fencing, Lighting, and Perimeter Protection
Physical Intrusion Detection Systems
Physical Security Domain Review and Quiz

Lesson 5: Security Architecture and Design

Critical Components of Every Computer
Processes and Threads
The OSI Model
Operating System Protection Mechanisms
Ring Architecture and Trusted Components
Virtual Machines, Layering, and Virtual Memory
Access Control Models
Orange Book, ITSEC, and Common Criteria
Certification and Accreditation
Covert Channels and Types of Attacks
Buffer Overflows and Data Validation Attacks
Security Models and Architecture Domain Review and Quiz

Lesson 6: Business Continuity Planning and Disaster Recovery Planning

Roles and Responsibilities
Liability and Due Care Issues
Business Impact Analysis
Identification of Different Types of Threats
Development Process of BCP
Backup Options and Technologies
Types of Offsite Facilities
Implementation and Testing of BCP
Business Continuity Planning and Disaster Recovery Planning Domain Review and Quiz

Lesson 7: Telecommunications and Network Security

TCP\IP Suite
LAN, MAN, and WAN Topologies and Technologies
Cable Types and Issues
Broadband versus Baseband Technologies
Ethernet and Token Ring
Network Devices
Firewall Types and Architectures
Dial-up and VPN Protocols
DNS and NAT Network Services
FDDI and SONET
X.25, Frame Relay, and ATM
Wireless LANs and Security Issues
Cell Phone Fraud
VoIP
Types of Attacks
Telecommunications, Networks, and Internet Security Domain Review and Quiz

Lesson 8: Application Development Security

Software Development Models
Prototyping and CASE Tools
Object-Oriented Programming
Middleware Technologies
ActiveX, Java, OLE, and ODBC
Database Models
Relational Database Components
CGI, Cookies, and Artificial Intelligence
Different Types of Malware
Applications & Systems Development Domain Review and Quiz

Lesson 9: Operations Security

Operations Department Responsibilities
Personnel and Roles
Media Library and Resource Protection
Types of Intrusion Detection Systems
Vulnerability and Penetration Testing
Facsimile Security
RAID, Redundant Servers, and Clustering
Operations Security Domain Review and Quiz

Lesson 10: Legal, Regulations, Investigations and Compliance

Different Ethics Sets
Computer Criminal Profiles
Types of Crimes
Liability and Due Care Topics
Privacy Laws and Concerns
Complications of Computer Crime Investigation
Types of Evidence and How to Collect It
Forensics
Legal Systems
Law, Investigation, and Ethics Domain Review and Quiz

6940 Tudsbury Road, Baltimore, MD 21244
P: 410-597-9722
www.nhbaltimore.com