Kontakt oss nå og book din kurs.

ISC2 - CISSP-ISSEP Information Systems Security Engineering Professional

Varighet

Varighet:

Bare 5 dager

Metode

Metode:

klasserommet / på nett / Hybrid

Neste dato

Neste dato:

24/6/2024 (Mandag)

Overview

Official ISC2 Training Provider

The accelerated Information Systems Security Engineering Professional (ISSEP) is a CISSP who specializes in the practical application of systems engineering principles and processes to develop secure systems. An ISSEP analyzes organizational needs, defines security requirements, designs security architectures, develops secure designs, implements system security, and supports system security assessment and authorization for government and industry.

The broad spectrum of topics included in the ISSEP Common Body of Knowledge (CBK®) ensure its relevancy across all disciplines in the field of security engineering. Successful candidates are competent in the following five domains: • Systems Security Engineering Foundations • Risk Management • Security Planning and Design • Systems Implementation, Verification and Validation • Secure Operations, Change Management and Disposal.

The CISSP-ISSEP is an ideal credential for proving you know how to incorporate security into all facets of business operations. This security engineering certification recognizes your keen ability to practically apply systems engineering principles and processes to develop secure systems. You have the knowledge and skills to incorporate security into projects, applications, business processes and all information systems.

At the end of this course, you’ll achieve your CISSP-ISSEP Information Systems Security Engineering Professional certification.

Through Firebrand’s Lecture | Lab | Review methodology you’ll certify at twice the speed of traditional training and get access to courseware, learn from certified instructors, and train in a distraction-free environment.

40% faster

Distraction-free environment

Audience

The CISSP-ISSEP is ideal for those working in roles such as:

  • Senior systems engineer
  • Information assurance systems engineer
  • Information assurance officer
  • Information assurance analyst
  • Senior security analyst

Det vil ta deg bare et øyeblikk å se hvor billige våre kurs er...

 Se priser

Her er 8 grunner til hvorfor du skal gjennomføre ditt hos Firebrand Training:

  1. Du blir utdannet og sertifisert på bare 5 dager. Hos oss får du din utdanning og sertifisering på rekordtid, en sertifisering du også gjennomfører der og da som en integrert del av den intensive, akselererte utdanningen.
  2. Alt er inkludert. Et engangsbeløp dekker alt kursmaterial, eksamen, kost og losji og tilbyr den mest kostnadseffektive måten å gjennomføre ditt kurs og sertifisering på. Og dette uten noen uannonserte ytterligere kostnader.
  3. Du klarer sertifiseringen første gangen eller kan gå kurset om igjen kostnadsfritt. Det er vår garanti. Vi er sikre på at du vil klare din sertifisering første gangen. Men skulle du mot formodning ikke gjøre det kan du innen et år komme tilbake og kun betale for eventuelle overnattinger og din eksamen. Alt annet er gratis.
  4. Du lærer deg mer.Tradisjonelle utdanningsdager varer fra kl. 09.00 til 16.00 med lange lunsj- og kaffepauser. Hos Firebrand Training får du minst 12 timers effektiv og fokusert kvalitetsutdanning hver dag sammen med din instruktør, uten private eller arbeidsrelaterte, forstyrrende momenter.
  5. Du lærer deg raskere. Vi kombinerer de tre innlæringsmetodene (Presentasjon |Øving| Diskusjon) slik at vi gjennomfører kurset på en måte som sikrer at du lærer deg raskere og lettere.
  6. Du er i sikre hender.Vi har utdannet og sertifisert 134.561 personer, vi er partner med alle de store navn i bransjen og vi har vunnet atskillige utmerkelser, bla. a. "Årets Learning Partner 2010, 2011, 2012, 2013 og 2015” fra Microsoft Danmark og med en vekst på 1430 % siden 2009 er vi årets Gazelle prisvinner på Sjælland, Danmark.
  7. Du lærer deg ikke bare teorien. Vi har videreutviklet kursen og tilbyr flere praktiske øvelser og sikrer på den måten, at du kan bruke dine ferdigheter for å løse daglige praktiske problemstillinger.
  8. Du lærer av de beste. Våre instruktører på er de beste i bransjen og tilbyr en helt unik blanding av kunnskap, praktisk erfaring og pasjon for å lære bort.

Benefits

Er du klar for kurset? Ta en GRATIS test for å måle og vurdere kunnskapsnivået ditt.

 Gratis Test

Curriculum

CISSP-ISSEP Information Systems Security Engineering Professional

Domain 1: Systems Security Engineering Foundations

1.1 Apply systems security engineering fundamentals

1.2 Execute systems security engineering processes

1.3 Integrate with applicable system development methodology

1.4 Perform technical management

1.5 Participate in the acquisition process

1.6 Design Trusted Systems and Networks (TSN)

  • Understand systems security engineering trust concepts and hierarchies
  • Identify the relationships between systems and security engineering processes
  • Apply structural security design principles
  • Integrate security tasks and activities
  • Verify security requirements throughout the process
  • Integrate software assurance methods
  • Perform project planning processes
  • Perform project assessment and control processes
  • Perform decision management processes
  • Perform risk management processes
  • Perform configuration management processes
  • Perform information management processes
  • Perform measurement processes
  • Perform Quality Assurance (QA) processes
  • Identify opportunities for security process automation
  • Identify organizational security authority
  • Identify system security policy elements
  • Integrate design concepts (e.g., open, proprietary, modular)
  • Prepare security requirements for acquisitions
  • Participate in selection process
  • Participate in Supply Chain Risk Management (SCRM)
  • Participate in the development and review of contractual documentation

Domain 2: Risk Management

2.1 Apply security risk management principles

2.2 Address risk to system

2.3 Manage risk to operations

  • Establish risk context
  • Identify system security risks
  • Perform risk analysis
  • Perform risk evaluation
  • Recommend risk treatment options
  • Document risk findings and decisions
  • Determine stakeholder risk tolerance
  • Identify remediation needs and other system changes
  • Determine risk treatment options
  • Assess proposed risk treatment options
  • Recommend risk treatment options

Analyze organizational and operational environment

3.2 Apply system security principles

3.3 Develop system requirements

3.4 Create system security architecture and design

Domain 3: Security Planning and Design

  • Capture stakeholder requirements
  • Identify relevant constraints and assumptions
  • Assess and document threats
  • Determine system protection needs
  • Develop Security Test Plans (STP)
  • Incorporate resiliency methods to address threats
  • Apply defense-in-depth concepts
  • Identify fail-safe defaults
  • Reduce Single Points of Failure (SPOF)
  • Incorporate least privilege concept
  • Understand economy of mechanism
  • Understand Separation of Duties (SoD) concept
  • Develop system security context
  • Identify functions within the system and security Concept of Operations (CONOPS)
  • Document system security requirements baseline
  • Analyze system security requirements
  • Develop functional analysis and allocation
  • Maintain traceability between specified design and system requirements
  • Develop system security design components
  • Perform trade-off studies
  • Assess protection effectiveness

Domain 4: Systems Implementation, Verification and Validation

4.1 Implement, integrate and deploy security solutions

4.2 Verify and validate security solutions

  • Perform system security implementation and integration
  • Perform system security deployment activities
  • Perform system security verification
  • Perform security validation to demonstrate security controls meet stakeholder security requirements

Domain 5: Secure Operations, Change Management and Disposal

5.1 Develop secure operations strategy

5.2 Participate in secure operations

5.3 Participate in change management

5.4 Participate in the disposal process

  • Specify requirements for personnel conducting operations
  • Contribute to the continuous communication with stakeholders for security relevant aspects of the system
  • Develop continuous monitoring solutions and processes
  • Support the Incident Response (IR) process
  • Develop secure maintenance strategy
  • Participate in change reviews
  • Determine change impact
  • Perform verification and validation of changes
  • Update risk assessment documentation
  • Identify disposal security requirements
  • Develop secure disposal strategy
  • Develop decommissioning and disposal procedures
  • Audit results of the decommissioning and disposal process

Exam Track

At the end of this accelerated course, you’ll sit the following exam at the Firebrand Training centre, covered by your Certification Guarantee:

CISSP-ISSEP Information Systems Security Engineering Professional

CISSP-ISSEP is in compliance with the stringent requirements of ANSI/ISO/IEC Standard 17024.

  • Length of exam: 3 hours
  • Number of items: 125 Multiple choice
  • Passing grade: 700 out of 1000 points

Domains Weight

  • Systems Security Engineering Foundations 25%
  • Risk Management 14%
  • Security Planning and Design 30%
  • Systems Implementation, Verification and Validation 14%
  • Secure Operations, Change Management and Disposal 17%

What's Included

Prerequisites

Before attending this accelerated course, you must be a CISSP in good standing and have two years cumulative paid work experience in one or more of the five domains of the CISSP-ISSEP CBK.

Anmeldelser

Vi har lært opp 134.561 personer på 12 år. Vi ba dem om å anmelde vår akselererte opplæring. Akkurat nå har 96,41% angitt at Firebrand overgikk forventningene:

"The best instructor I’ve had in all my training courses, quite knowledgeable, jovial and well planned. Thanks to him, I passed my CISSP exam with flying colours. God bless you!"
Vijendra Kalburgi, Inzinc Consulring Ltd. (11/12/2023 (Mandag) til 16/12/2023 (Lørdag))

"Instructor actually cared! He was available constantly."
Paul Martin, COMPUTERCENTER PLC. (11/12/2023 (Mandag) til 16/12/2023 (Lørdag))

"It was brilliant to work with our instructor, he is jovial, knowledgable and great sense of humour. If I pass the exam, he would be one of the main reasons."
Vijendra Kalburgi, Self employed. (11/12/2023 (Mandag) til 16/12/2023 (Lørdag))

"The course is intensive and very useful, and our instructor did a good job explained everything clearly."
Chi Wai Chan. (11/12/2023 (Mandag) til 16/12/2023 (Lørdag))

"I want to call out our instructor specifically - he genuinely cares about his students and he has made sure, all week, that he has done all he can for any of us who have needed him. Never had a classroom experience that wasn't just in-out so this has been refreshing and very welcome."
Anonymous. (11/12/2023 (Mandag) til 16/12/2023 (Lørdag))

Kursdatoer

Start

Slutt

Kapasitet

Plass

Registrer deg

19/2/2024 (Mandag)

23/2/2024 (Fredag)

Ferdig - Gi tilbakemelding

-

 

24/6/2024 (Mandag)

28/6/2024 (Fredag)

Venteliste

Landsdekkende

 

5/8/2024 (Mandag)

9/8/2024 (Fredag)

Begrenset kapasitet

Landsdekkende

 

16/9/2024 (Mandag)

20/9/2024 (Fredag)

Ledige plasser

Landsdekkende

 

28/10/2024 (Mandag)

1/11/2024 (Fredag)

Ledige plasser

Landsdekkende

 

9/12/2024 (Mandag)

13/12/2024 (Fredag)

Ledige plasser

Landsdekkende

 

Siste anmeldelser fra studenten vår

Trustpilot