Description:

This course provides comprehensive coverage of the CISSP Common Body of Knowledge (CBK) and prepares participants for the CISSP certification exam. It covers the eight domains of information security, including risk management, asset security, security architecture, network security, identity management, and security operations.

Through instructor-led sessions, real-world examples, and practice questions, participants will gain a deep understanding of security principles, frameworks, and best practices required to design, implement, and manage a secure enterprise environment.

Duration:

1Day

Course Code: BDT82

Learning Objectives:

After this course, you will be able to:

1.  Understand the CISSP CBK domains and core security concepts

2. Apply risk management and security governance principles

3. Design and implement secure network and system architectures

4. Manage identity and access control mechanisms

5. Implement security operations and incident response strategies

6. Understand legal, regulatory, and compliance requirements
7. Prepare effectively for the CISSP certification exam

IT professionals, security analysts, security consultants, auditors, network architects, and professionals preparing for the CISSP certification

Basic understanding of IT infrastructure, networking, and security concepts; at least 2–5 years of experience in IT/security is recommended 

Course Outline:

Module 1: Security and Risk Management

1. Security principles and governance
2. Risk management processes
3. Compliance, laws, and regulations
4. Ethics and professional conduct

Module 2: Asset Security

1. Data classification and ownership
2. Data handling and protection methods
3. Privacy and data security controls

Module 3: Security Architecture and Engineering

1. Secure design principles
2. Cryptography fundamentals
3. Security models and frameworks
4. Physical security considerations

Module 4: Communication and Network Security

1. Network architecture and secure design
2. Secure communication channels
3. Network attacks and defenses

Module 5: Identity and Access Management (IAM)

1. Authentication and authorization mechanisms
2. Identity lifecycle management
3. Access control models

Module 6: Security Assessment and Testing

1. Security testing strategies
2. Vulnerability assessments and penetration testing
3. Audit and compliance checks

Module 7: Security Operations

1. Incident response and handling
2. Disaster recovery and business continuity
3. Logging, monitoring, and investigations

Module 8: Software Development Security

1. Secure software development lifecycle (SDLC)
2. Application security principles
3. Common vulnerabilities (OWASP Top 10)

Training Material Provided

1. Comprehensive CISSP study guide aligned with CBK
2. Practice questions and mock exams
3. Case studies and real-world security scenarios
4. Quick revision notes and exam tips