(ISC)2 corporate logobanner
yellow arrowHome    yellow arrowCredential Review Courses    yellow arrowCPE Courses    yellow arrowRegister    yellow arrowLogin
black arrow Course
Catalog
black arrow Online
Review
black arrow View
Demo
Cart
Credential Review Courses > CISSP
Online CISSP® CBK® Review

Each (ISC)2-developed course offers a detailed discussion of the domain, plus features designed to reinforce your learning by using animations, graphics, interactive exercises, a glossary and module quizzes. A final test for each course allows you to check your understanding of each domain for the CISSP certification exam.

Learn more about each course:

  • Access Control
  • Application Security
  • Business Continuity and Disaster Recovery Planning
  • Cryptography
  • Legal, Regulations, Compliance and Investigations
  • Operations Security
  • Physical (Environmental) Security
  • Security Architecture and Design
  • Information Security and Risk Management
  • Telecommunications and Network Security
  • (ISC)2 eLearning: CISSP CBK Self-Assessment
Register
Buy Now - Receive $39.95 credit
Best Value - Save up to 50%

Access Control

The Access Control domain of the CISSP® CBK® centers on the mechanisms that work together to create a security architecture to protect the assets of the information system. Access control permits management to specify what users can do, what resources they can access, and what operations they can perform.

Course Structure

Module 1: Access Control Categories and Types

Module 2: Access Control Threats

Module 3: Access to System

Module 4: Access to Data

Module 5: Intrusion Prevention, Intrusion Detection, and Audit Trail Monitoring

Module 6: Information Security Activities

Course Test

Objectives

At the completion of this course, you will be able to:

  • Describe the access control concepts and methodologies
  • Identify access control security tools and technologies
  • Describe the auditing mechanisms for analyzing behavior, use, and content of the information system

Seat hours: 4-6 hours

Register

Application Security

The Application Security domain of the CISSP® CBK® addresses the important security concepts that apply to the software application development: the environment where software is designed and developed and the critical role software plays in providing security to the information system.

Course Structure

Module 1: Applications and Database Environments

Module 2: Environment Threats

Module 3: System Life Cycle and Software Development Methods

Module 4: Programming Languages and Object-Oriented Technology

Module 5: Software Protection Mechanisms

Module 6: Web Application Environment

Module 7: Assurance Mechanisms

Course Test

Objectives

At the completion of this course, you will be able to:

  • Describe the principles for securing applications throughout the life cycle management process
  • List the basic processes of change control
  • Identify the concepts related to data warehousing, data mining and knowledge-based systems
  • Define the application software design engineering principles
  • Identify the various types of malicious software and how malicious software can be introduced into the computing environment
  • Describe protection mechanisms that can be used to prevent, detect, and correct malicious software attacks

Seat hours: 4-6 hours

Register

Business Continuity and Disaster Recovery Planning

The Business Continuity and Disaster Recovery Planning domain of the CISSP® CBK® addresses the preservation and recovery of the business in the event of incidents that could otherwise interrupt normal business operations.

Course Structure

Module 1: Business Continuity Management

Module 2: Phases of BCP

Module 3: Restoration Action and the Recovery Process

Course Test

Objectives

At the completion of this course, you will be able to:

  • Define business continuity planning and business continuity management
  • Describe the phases of business continuity planning
  • Identify preparation for specific actions required to preserve critical business operations

Seat hours: 2-3 hours

Register

Cryptography

The Cryptography domain of the CISSP® CBK® addresses the principles, means, and methods of disguising information to ensure its confidentiality, integrity, authentication and non-repudiation.

Course Structure

Module 1: History of Cryptography

Module 2: Encryption Methods and Systems

Module 3: Symmetric Key Encryption

Module 4: Asymmetric and Hybrid Systems

Module 5: Message Integrity Control and Digital Signatures

Module 6: Certification, Key Management and PKI

Module 7: Cryptanalysis and Attacks

Module 8: Email and Internet Encryption and the Role of the Security Professional

Course Test

Objectives

At the completion of this course, you will be able to:

  • Define the basic concepts within cryptography
  • Describe public (asymmetric) and secret/shared (symmetric) key algorithms in terms of their applications and uses
  • Identify algorithm types, key distribution and management, and methods of attack
  • Define the applications, construction, and use of digital signatures

Seat hours: 7-10 hours

Register

Legal, Regulations, Compliance and Investigations

The Legal, Regulations, Compliance and Investigations domain of the CISSP® CBK® addresses computer crime laws and regulations that affect organizations and personnel, including individual and corporate responsibility. It also deals with the investigative measures and techniques that can be used to determine if a crime has been committed, as well as the investigation of crime incidents, collection of evidence and contacting of law enforcement. Finally, it looks at information security ethics as applied to society, employees and (ISC)2 members.

Course Structure

Module 1: Law and Computer Crime

Module 2: Investigation

Module 3: Ethics

Course Test

Objectives

At the completion of this course, you will be able to:

  • Describe the laws and legal issues that are applicable to computer crime
  • Describe the forensic methods that are used to gather and preserve evidence and investigate computer crimes
  • Outline the ethical issues and the code of conduct applicable to the security professional

Seat hours: 3-5 hours

Register

Operations Security

The Operations Security domain of the CISSP® CBK® relates to the controls over hardware, media, and the operators and administrators with access privileges to any of these resources.

Course Structure

Module 1: The Environment for Operations Security

Module 2: Hardware and Software

Module 3: Data/Media, Telecom Equipment and Support Systems

Module 4: Operations, Personnel and Information Security Activities

Course Test

Objectives

At the completion of this course, you will be able to:

  • Define the types of security controls
  • List security guidelines for hardware and software
  • Describe data and environment recovery tools
  • Identify security guidelines for data/media, telecom equipment and support systems
  • List information security activities required of operators and network administrators

Seat hours: 2-3 hours

Register

Physical (Environmental) Security

The Physical (Environmental) Security domain of the CISSP® CBK® encompasses protection techniques for the entire facility, from the outside perimeter to the inside office space, including all the information system resources. Physical security refers to the physical measures and their associated procedures to safeguard and protect against damage, loss and theft. It also refers to the implementation of controls that discourage attackers by convincing them that the cost of attacking is greater than the value received from the attack.

Course Structure

Module 1: Threats and Countermeasures

Module 2: Crime Prevention Through Environmental Design

Course Test

Objectives

At the completion of this course, you will be able to:

  • Describe the threats, vulnerabilities, and countermeasures related to physically protecting the enterprise's sensitive information assets
  • Identify the risk to facilities, data, media, equipment, support systems, and supplies as they relate to physical security

Seat hours: 4-5 hours

Register

Security Architecture and Design

The Security Architecture and Design domain of the CISSP® CBK® centers on the concepts, principles, structures, and standards used to design, monitor, and secure operating systems, hardware, networks, applications and those controls used to enforce various levels of availability, integrity, and confidentiality.

Course Structure

Module 1: Common Computer Architecture

Module 2: Enterprise Security Architecture

Module 3: Security Models

Course Test

Objectives

At the completion of this course, you will be able to:

  • Identify the security issues and controls that can be associated with architectures and designs
  • Describe the principles of common computer and network organization, enterprise architectures and designs
  • Define and understand security models

Seat hours: 4-6 hours

Register

Information Security and Risk Management

The Information Security and Risk Management domain of the CISSP® CBK® involves the identification of an organization's information assets and the development, documentation, and implementation of policies, standards, procedures, and guidelines.

Course Structure

Module 1: Principles and Requirements

Module 2: Organizational Roles and Responsibilities

Module 3: Organizational Policy

Module 4: Information Classification

Module 5: Risk Management and Analysis

Course Test

Objectives

At the completion of this course, you will be able to:

  • Identify the planning, organization, and roles of individuals in identifying and securing an organization's information assets
  • Define the differences between policies, standards, guidelines and procedures in terms of their application to security administration
  • Define the importance of security awareness so employees are aware of the need for information security
  • Describe the importance of risk management practices and tools to identify, prioritize, and reduce the risk to specific information assets
  • Define the roles of users in support of security processes

Seat hours: 4-6 hours

Register

Telecommunications and Network Security

The Telecommunications and Network Security domain of the CISSP® CBK® focuses on network structures, transmission methods, transport formats, security measures used to provide availability, integrity, and confidentiality, and authentication for transmission over private and public communications networks and media.

Course Structure

Module 1: Data Networks

Module 2: Network Protocols

Module 3: Telephony

Module 4: Remote Access

Module 5: Network Threats, Attacks and Counterattacks

Module 6: Network Access Controls

Module 7: Network Availability Technologies

Module 8: Internet and Web Security Protocols

Module 9: Multimedia and Quality of Service

Module 10: Information Security Activities

Course Test

Objectives

At the completion of this course, you will be able to:

  • Describe the telecommunications and network security elements as they relate to the transmission of information in local area, wide area, and remote access
  • Define the concepts associated with the Internet, intranet, and extranet communications, such as firewalls, gateways, and associated protocols
  • Identify the communications security management and techniques that prevent, detect, and correct errors so that the protection of information transmitted over networks is maintained

Seat hours: 8-12 hours

Register

(ISC)2 eLearning: CISSP CBK Self-Assessment

Are you ready? Determine your CISSP CBK domain readiness with the (ISC)2 eLearning: CISSP CBK Self-Assessment. Use this 200-question tool to gauge your knowledge of each of the ten domains of the (ISC)2 CISSP CBK. Optimize your study time and investment by concentrating on only those areas that need further review.

Upon completion, you will receive your results. If you answered less than 75% of the questions correctly from a particular domain, the appropriate CISSP CBK Online Domain Course will be recommended for further review.

Register

Back to top

About Us | Contact