Certified Information Systems Security Professional (CISSP) (CS8502)

This course complements your knowledge and experience in large-scale information security. It expands your knowledge by browsing the eight domains defined by the Common Body of Knowledge (CBK) for information security professionals. The training offers an approach based on the use of a corporate security process, while also being the preparation tool for CISSP certification.

The CISSP certification is a highly-rated cybersecurity credential in the world of today's technology and security. This remains because the (ISC)² organization is constantly improving content through the engagement of industry experts, ensuring that the material and topics remain relevant despite the continuous changes in the industry. In defining the eight CBK domains, an industry standard has been developed and our CISSP training is exploiting all of them.

The skills and knowledge you will get from this course will help you to understand these eight areas. It will establish credibility and success for every professional in the field of information security.

This course expands your knowledge by browsing the eight domains defined by the Common Body of Knowledge (CBK) CISSP Certification:

  • Security and risk management
  • Security of information
  • Security engineering
  • Telecommunication and networking security
  • Security in identity and access management
  • Security assessment and testing
  • Business security
  • Security in application development

Instructor

The instructor of our CISSP training is Mr. Boris Gigovic, certified CISSP / SSCP / CEH / CEI / ECSA / Security + / CHFI, expert in the field of technical and organizaional information security.

Boris has significant practical experience through education, over 120 successfully completed trainings (+1000 students) on topics of information security. In addition to trainings, Boris is hired as a SME (Subject Matter Expert) to consult on the implementation of solutions for the protection of complex systems of large corporations and state defense systems. He is also the founder of our company.

Attend our Cybersecurity courses at our training center in Belgrade, live online (virtual classroom) or on-site (private training).
Special pricing can be applied upon registration (multiple participants from your company, government sector, nonprofit organizations, etc.) – contact us to learn more.

Public class

Belgrade
Tentative dateTentative date
17.08.2020
950€
1150€
Serbian
Novi Sad
Tentative dateTentative date
17.08.2020
950€
1150€
Serbian
Virtual classroom
Tentative dateTentative date
17.08.2020
950€
1150€
Serbian
Belgrade
Tentative dateTentative date
23.11.2020
950€
1150€
Serbian
Novi Sad
Tentative dateTentative date
23.11.2020
950€
1150€
Serbian
Virtual classroom
Tentative dateTentative date
23.11.2020
950€
1150€
Serbian
950€
Training duration: 
5 days / 35 hours

Private class

On-site / Online
Minimum no. of participants: 3
5 days / 35 hours
Price on request
Serbian or English
Training plan: 

Lesson 1: Security and Risk Management

  • Security Governance Principles

  • Compliance

  • Professional Ethics

  • Security Documentation

  • Risk Management

  • Threat Modeling

  • Business Continuity Plan Fundamentals

  • Acquisition Strategy and Practice

  • Personnel Security Policies

  • Security Awareness and Training

Lesson 2: Asset Security

  • Asset Classification

  • Privacy Protection

  • Asset Retention

  • Data Security Controls

  • Secure Data Handling

Lesson 3: Security Engineering

  • Security in the Engineering Lifecycle

  • System Component Security

  • Security Models

  • Controls and Countermeasures in Enterprise Security

  • Information System Security Capabilities

  • Design and Architecture Vulnerability Mitigation

  • Vulnerability Mitigation in Embedded, Mobile, and Web-Based Systems

  • Cryptography Concepts

  • Cryptography Techniques

  • Site and Facility Design for Physical Security

  • Physical Security Implementation in Sites and Facilities

Lesson 4: Communications and Network Security

  • Network Protocol Security

  • Network Components Security

  • Communication Channel Security

  • Network Attack Mitigation

Lesson 5: Identity and Access Management

  • Physical and Logical Access Control

  • Identification, Authentication, and Authorization

  • Identity as a Service

  • Authorization Mechanisms

  • Access Control Attack Mitigation

Lesson 6: Security Assessment and Testing

  • System Security Control Testing

  • Software Security Control Testing

  • Security Process Data Collection

  • Audits

Lesson 7: Security Operations

  • Security Operations Concepts

  • Physical Security

  • Personnel Security

  • Logging and Monitoring

  • Preventative Measures

  • Resource Provisioning and Protection

  • Patch and Vulnerability Management

  • Change Management

  • Incident Response

  • Investigations

  • Disaster Recovery Planning

  • Disaster Recovery Strategies

  • Disaster Recovery Implementation

Lesson 8: Software Development Security

  • Security Principles in the System Lifecycle

  • Security Principles in the Software Development Lifecycle

  • Database Security in Software Development

  • Security Controls in the Development Environment

  • Software Security Effectiveness Assessment

Exclusives: 
  • One year access to the class recording
  • 900+ practice exam questions
  • Course material accessible in electronic format
  • Certificate of attendance
Prerequisites: 

It is highly recommended that participants have Network +, or Security + certifications, or have equivalent experience by registering for this training. It would be of benefit if participants hold one or more of these security certifications or technologies (or the equivalent in experience): MCSE, MCTS, MCITP, SCNP, CCNP, RHCE, LCE, CNE, SSCP, GIAC, CISA, or CISM.