Get Unlimited Microsoft Training With Your FastPass - Just £6000! Training Centre Still Open – Offering Residential, OIL and Hybrid Courses.

ISACA - CSX Certification | Cybersecurity Practitioner



Only 4 Days



Classroom / Online / Hybrid

Next date

Next date:

8/2/2021 (Monday)


Learn quickly - Firebrand's official CSX Practitioner course is 20% faster than traditional training. In just 4 days, you’ll be introduced to key cybersecurity skills, prove your ability to implement security controls and learn how to perform vulnerability scans.

Named 2016’s Top Professional Certification program, CSX-P remains the most internationally respected cyber security certification that spans the five security functions (identity, protect, detect, respond and recover).

You’ll develop your practical cyber security skills - 50% of this accelerated course includes hands-on lab exercises in a virtual cyber environment. As well as learning how to respond and recover from crippling network incidents or disasters, you’ll also learn:

  • Network evaluation
  • Vulnerability analysis
  • Malware & incident detection
  • Incidence reporting
  • Safeguard implementation

You’ll be immersed in the curriculum through Firebrand's unique Lecture Lab Review technique, which will help you learn better, faster. Your expert instructor will take you through the 5 areas of cyber security frameworks:

  • Identify: Identification, assessment and evaluation of assets, threats and vulnerabilities in both internal and external networks
  • Protect: Implementation of cyber security controls to protect a system from identified threats
  • Detect: Detection of network and system incidents, events and compromise indicators, along with assessment of potential damage
  • Respond: Execution of comprehensive incident response plans and mitigation of cyber incidents
  • Recover: Recovery from incidents and disasters, including post incident-response documentation and implementation of continuity plans

Please note: This accelerated course prepares you for the ISACA Cybersecurity Certificate - Practitioner exam, and you'll receive an exam voucher as part of this course.

Firebrand is a premier ISACA partner for EMEA and the US. No other partner in these regions trains more students.

ISACA is the trademark owner of the ISACA and CYBERSECURITY NEXUS

Seven reasons why you should sit your course with Firebrand Training

  1. Two options of training. Choose between residential classroom-based, or online CSX Practitioner courses
  2. You'll be CSX Practitioner certified in just 4 days. With us, you’ll be CSX Practitioner trained in record time
  3. Our CSX Practitioner course is all-inclusive. A one-off fee covers all course materials, exams, accommodation and meals. No hidden extras
  4. Pass CSX Practitioner first time or train again for free. This is our guarantee. We’re confident you’ll pass your course first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
  5. You’ll learn more. A day with a traditional training provider generally runs from 9am – 5pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day quality learning time, with your instructor
  6. You’ll learn CSX Practitioner faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
  7. You’ll be studying CSX Practitioner with the best. We’ve been named in Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified 77,115 professionals, and we’re partners with all of the big names in the business


Benefits of Training with Firebrand

  • Two options of training - Residential classroom-based, or online courses
  • A purpose-built training centre – get access to dedicated Pearson VUE Select facilities
  • Certification Guarantee – pass first time or train again free (just pay for accommodation, exams and incidental costs)
  • Everything you need to certify – you’ll sit your exam at the earliest available opportunity after the course - either immediately after your classroom course, or as soon as there are slots available, if you've taken it online
  • No hidden extras – one cost covers everything you need to certify


Domain 1: Identify

  • Network infrastructure and digital assets
  • Network topology and data flow analysis
  • Security review and gap identification
  • Security policy and procedure development
  • Regulation and legal impact
  • Threat modeling


  • Asset identification
  • Data flow identification
  • Enterprise asset identification
  • Data flow analysis
  • Enterprise data flow analysis
  • Identify challenge

Domain 2: Protect

  • Vulnerability testing
  • Security tools and systems
  • Incident response plans
  • Security and business functions
  • Security configuration evaluation


  • Firewall setup
  • Backup and restore points
  • File system protections
  • OS baseline
  • Protect challenge

Domain 3: Detect


  • Event and incident identification
  • Malicious activity analysis


  • Sec onion setup and testing
  • Snort rules
  • Event detection
  • Data and network analysis
  • Vulnerability analysis
  • Detect challenge

Domain 4: Respond

  • Incident notification and containment
  • Evidence collection and technical analysis


  • Incident correlation
  • Network rorensics
  • Malware investigation and evaluation
  • Response challenge

Domain 5: Recover

  • System validation
  • Post incident security plan and procedure


  • Re-Imaging
  • Restore points

Exam Track

As part of your accelerated course, you'll sit the following exam at the Firebrand Training centre, covered by your Certification Guarantee:

  • ISACA CSX Practitioner
    • Format: Online, lab-based skills assessment
    • Duration 1 hour
    • Number of questions: 5
    • Language: English
    • Domains
      • Domain 1: Business and Security Environment (20%)
      • Domain 2: Operational Security Readiness (20%)
      • Domain 3: Threat Detection and Evaluation (20%)
      • Domain 4: Incident Response and Recovery (40%)

Recertification Requirements

  • Attain and report an annual minimum of 120 qualifying CPEs over 3 years - minimum reporting requirement of 20 CPE hours each year
  • Minimum of 50% of the annual and total CPE hours must be obtained from skills-based training or lab activities

What's Included


  • Official ISACA CSX-P courseware
  • Official ISACA CSX-P instructor
  • 6 months of access to the ISACA CSX-P labs
  • CSX Practitioner exam voucher
  • 33.5 ISACA CPE credits for attending - an additional 2 ISACA CPE credits can be earned for passing the CSX-P examination

Your accelerated course includes:

  • Accommodation *
  • Meals, unlimited snacks, beverages, tea and coffee *
  • On-site exams **
  • Exam vouchers **
  • Practice tests **
  • Certification Guarantee ***
  • Courseware
  • Up-to 12 hours of instructor-led training each day
  • 24-hour lab access
  • Digital courseware **
  • * For residential training only. Doesn't apply for online courses
  • ** Some exceptions apply. Please refer to the Exam Track or speak with our experts
  • *** Pass first time or train again free (just pay for accommodation, exams and incidental costs)


To take this course, you should have a minimum of one to five years' experience working in cyber security and an understanding of:

  • Network Scanning
  • Specialised Port Scans
  • Network Topologies
  • Network Log Analysis
  • Centralized Monitoring
  • Hotfix Distribution
  • Vulnerability Scanning
  • Traffic Monitoring
  • Compromise Indicators
  • False Positive Identification
  • Packet Analysis
  • User Account Controls

You must also have either 3 years of experience in 3 of the 5 cyber security activity domains (identify, protect, detect, respond, recover) or, have any one of the following certifications: CISA, CISM, CRISC, CGEIT, CEH, ECSA, LPT, GCIH, OSCP, GPEN, CySA+, CISSP.

Unsure whether you meet the prerequisites? Don’t worry. Your training consultant will discuss your background with you to understand if this course is right for you.


Here's the Firebrand Training review section. Since 2001 we've trained exactly 77,115 students and asked them all to review our Accelerated Learning. Currently, 96.72% have said Firebrand exceeded their expectations.

Read reviews from recent accelerated courses below or visit Firebrand Stories for written and video interviews from our alumni.

"Pretty good course and accommodation,"
Anonymous. (15/10/2018 (Monday) to 18/10/2018 (Thursday))

"This is the second time that I am attending a course at Firebrand and each time it gets better and the knowledge I acquire makes me humble and eager to learn. I will also return to implement the knowledge acquired into my company."
Kingsford Boateng, Kosmos Energy Ghana. (12/8/2017 (Saturday) to 20/8/2017 (Sunday))

"Very friendly staff. Good networking and fast track learning."
Christoph Gasparin, Gasparin & Cracknell Associates. (12/8/2017 (Saturday) to 20/8/2017 (Sunday))

"As a contractor, Firebrand's courses provide the most effective way of learning. A professional course like the CSXP provided in 9 days that might take years to accumulate at a normal pace, which is valuable. "
Anthony Campbell, Irish Life Assurance Plc. (12/8/2017 (Saturday) to 20/8/2017 (Sunday))

"Time is money, paying additional to make your self available in the course and learn faster in limited time is better than self-study with lots of interruption and delay. "
T.A., Ernst & Young. (12/8/2017 (Saturday) to 20/8/2017 (Sunday))

Course Dates





Book now

24/8/2020 (Monday)

27/8/2020 (Thursday)

Finished - Leave feedback




8/2/2021 (Monday)

11/2/2021 (Thursday)

Limited availability



22/3/2021 (Monday)

25/3/2021 (Thursday)




3/5/2021 (Monday)

6/5/2021 (Thursday)




14/6/2021 (Monday)

17/6/2021 (Thursday)




Latest Reviews from our students