Our UK training centre is reopening in June. Learn more about it on our blog.

ISACA CSX Certification | Cybersecurity Practitioner

- Only 4 Days

Learn quickly - Firebrand's official CSX Practitioner course is 20% faster than traditional training. In just 4 days, you’ll be introduced to key cybersecurity skills, prove your ability to implement security controls and learn how to perform vulnerability scans.

Named 2016’s Top Professional Certification program, CSX-P remains the most internationally respected cyber security certification that spans the five security functions (identity, protect, detect, respond and recover).

You’ll develop your practical cyber security skills - 50% of this accelerated course includes hands-on lab exercises in a virtual cyber environment. As well as learning how to respond and recover from crippling network incidents or disasters, you’ll also learn:


  • Network evaluation
  • Vulnerability analysis
  • Malware & incident detection
  • Incidence reporting
  • Safeguard implementation

You’ll be immersed in the curriculum through Firebrand's unique Lecture Lab Review technique, which will help you learn better, faster. Your expert instructor will take you through the 5 areas of cyber security frameworks:

  • Identify: Identification, assessment and evaluation of assets, threats and vulnerabilities in both internal and external networks
  • Protect: Implementation of cyber security controls to protect a system from identified threats
  • Detect: Detection of network and system incidents, events and compromise indicators, along with assessment of potential damage
  • Respond: Execution of comprehensive incident response plans and mitigation of cyber incidents
  • Recover: Recovery from incidents and disasters, including post incident-response documentation and implementation of continuity plans

Please note: This accelerated course prepares you for the ISACA Cybersecurity Certificate - Practitioner exam, and you'll receive an exam voucher as part of this course.

Firebrand is a premier ISACA partner for EMEA and the US. No other partner in these regions trains more students.

ISACA is the trademark owner of the ISACA and CYBERSECURITY NEXUS

See Benefits...

See prices now to find out how much you could save when you train at twice the speed.

Seven reasons why you should sit your course with Firebrand Training

  1. Two options of training. Choose between residential classroom-based, or online CSX Practitioner courses
  2. You'll be CSX Practitioner certified in just 4 days. With us, you’ll be CSX Practitioner trained in record time
  3. Our CSX Practitioner course is all-inclusive. A one-off fee covers all course materials, exams, accommodation and meals. No hidden extras
  4. Pass CSX Practitioner first time or train again for free. This is our guarantee. We’re confident you’ll pass your course first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
  5. You’ll learn more. A day with a traditional training provider generally runs from 9am – 5pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day quality learning time, with your instructor
  6. You’ll learn CSX Practitioner faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
  7. You’ll be studying CSX Practitioner with the best. We’ve been named in Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified 75607 professionals, and we’re partners with all of the big names in the business

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

Benefits of Training with Firebrand

  • Two options of training - Residential classroom-based, or online courses
  • A purpose-built training centre – get access to dedicated Pearson VUE Select facilities
  • Certification Guarantee – pass first time or train again free (just pay for accommodation, exams and incidental costs)
  • Everything you need to certify – you’ll sit your exam on the course and return home certified
  • No hidden extras – one cost covers everything you need to certify

See Curriculum...

Domain 1: Identify

  • Network infrastructure and digital assets
  • Network topology and data flow analysis
  • Security review and gap identification
  • Security policy and procedure development
  • Regulation and legal impact
  • Threat modeling


  • Asset identification
  • Data flow identification
  • Enterprise asset identification
  • Data flow analysis
  • Enterprise data flow analysis
  • Identify challenge

Domain 2: Protect

  • Vulnerability testing
  • Security tools and systems
  • Incident response plans
  • Security and business functions
  • Security configuration evaluation


  • Firewall setup
  • Backup and restore points
  • File system protections
  • OS baseline
  • Protect challenge

Domain 3: Detect


  • Event and incident identification
  • Malicious activity analysis


  • Sec onion setup and testing
  • Snort rules
  • Event detection
  • Data and network analysis
  • Vulnerability analysis
  • Detect challenge

Domain 4: Respond

  • Incident notification and containment
  • Evidence collection and technical analysis


  • Incident correlation
  • Network rorensics
  • Malware investigation and evaluation
  • Response challenge

Domain 5: Recover

  • System validation
  • Post incident security plan and procedure


  • Re-Imaging
  • Restore points

See Exam Track...

As part of your accelerated course, you'll sit the following exam at the Firebrand Training centre, covered by your Certification Guarantee:

  • ISACA CSX Practitioner
    • Format: Online, lab-based skills assessment
    • Duration 1 hour
    • Number of questions: 5
    • Language: English
    • Domains
      • Domain 1: Business and Security Environment (20%)
      • Domain 2: Operational Security Readiness (20%)
      • Domain 3: Threat Detection and Evaluation (20%)
      • Domain 4: Incident Response and Recovery (40%)

Recertification Requirements

  • Attain and report an annual minimum of 120 qualifying CPEs over 3 years - minimum reporting requirement of 20 CPE hours each year
  • Minimum of 50% of the annual and total CPE hours must be obtained from skills-based training or lab activities

See What's Included...


  • Official ISACA CSX-P courseware
  • Official ISACA CSX-P instructor
  • 6 months of access to the ISACA CSX-P labs
  • CSX Practitioner exam voucher
  • 33.5 ISACA CPE credits for attending - an additional 2 ISACA CPE credits can be earned for passing the CSX-P examination

Your accelerated course includes:

  • Accommodation *
  • Meals, unlimited snacks, beverages, tea and coffee *
  • On-site exams **
  • Exam vouchers **
  • Practice tests **
  • Certification Guarantee ***
  • Courseware
  • Up-to 12 hours of instructor-led training each day
  • 24-hour lab access
  • Digital courseware **
  • * For residential training only. Doesn't apply for online courses
  • ** Some exceptions apply. Please refer to the Exam Track or speak with our experts
  • *** Pass first time or train again free (just pay for accommodation, exams and incidental costs)

See Prerequisites...

To take this course, you should have a minimum of one to five years' experience working in cyber security and an understanding of:

  • Network Scanning
  • Specialised Port Scans
  • Network Topologies
  • Network Log Analysis
  • Centralized Monitoring
  • Hotfix Distribution
  • Vulnerability Scanning
  • Traffic Monitoring
  • Compromise Indicators
  • False Positive Identification
  • Packet Analysis
  • User Account Controls

You must also have either 3 years of experience in 3 of the 5 cyber security activity domains (identify, protect, detect, respond, recover) or, have any one of the following certifications: CISA, CISM, CRISC, CGEIT, CEH, ECSA, LPT, GCIH, OSCP, GPEN, CySA+, CISSP.

Unsure whether you meet the prerequisites? Don’t worry. Your training consultant will discuss your background with you to understand if this course is right for you.

See Dates...

ISACA CSX Practitioner Course Dates





Book now

24/2/2020 (Monday)

27/2/2020 (Thursday)




29/6/2020 (Monday)

2/7/2020 (Thursday)

Wait list



10/8/2020 (Monday)

13/8/2020 (Thursday)

Limited availability



21/9/2020 (Monday)

24/9/2020 (Thursday)




2/11/2020 (Monday)

5/11/2020 (Thursday)




14/12/2020 (Monday)

17/12/2020 (Thursday)




Here's the Firebrand Training review section. Since 2001 we've trained exactly 75607 students and asked them all to review our Accelerated Learning. Currently, 96.76% have said Firebrand exceeded their expectations.

Read reviews from recent accelerated courses below or visit Firebrand Stories for written and video interviews from our alumni.

"Pretty good course and accommodation,"
Anonymous. (15/10/2018 to 18/10/2018)

"This is the second time that I am attending a course at Firebrand and each time it gets better and the knowledge I acquire makes me humble and eager to learn. I will also return to implement the knowledge acquired into my company."
Kingsford Boateng, Kosmos Energy Ghana. (12/8/2017 to 20/8/2017)

"Very friendly staff. Good networking and fast track learning."
Christoph Gasparin, Gasparin & Cracknell Associates. (12/8/2017 to 20/8/2017)

"As a contractor, Firebrand's courses provide the most effective way of learning. A professional course like the CSXP provided in 9 days that might take years to accumulate at a normal pace, which is valuable. "
Anthony Campbell, Irish Life Assurance Plc. (12/8/2017 to 20/8/2017)

"Time is money, paying additional to make your self available in the course and learn faster in limited time is better than self-study with lots of interruption and delay. "
T.A., Ernst & Young. (12/8/2017 to 20/8/2017)

Latest Reviews from our students