Are you ready to take your IT security career to the next level? According to the International Information Systems Security Certification Consortium (ISC)2®, information security is currently one of the most visible professions. A professional certificate will give you a competitive edge in this popular field. Identified by TechRepublic as one of the Top 5 in-demand IT certifications in 2013, the Certified Information Systems Security Professional (CISSP®) is also one of the most highly regarded information security certifications available. Learn to protect information systems while becoming thoroughly familiar with the ten domains of the CISSP® Common Body of Knowledge (CISSP CBK®). Unlike bootcamp courses, this course will teach you the essentials of Information Systems Security while preparing you to take the CISSP® exam once all other exam qualifications have been met. Visit isc2.org for further information about the CISSP® certification and exam. Textbook required at the first class meeting and is available at the KSU Center Bookstore.
Note: This is not a beginner’s level course. Students should have a basic understanding of network operations and some familiarity with the 10 domains of the CISSP CBK®. See below for detailed prerequisites.
Students will learn how to secure information systems by learning the fundamentals of the Information Systems Security environment and processes. Students will become familiar with the ten domains of the CISSP CBK® and prepare for the CISSP® certification exam. The 10 domains are:
- Access Control
- Telecommunications and Network Security
- Information Security Governance and Risk Management
- Software Development Security
- Security Architecture and Design
- Operations Security
- Business Continuity and Disaster Recovery Planning
- Legal, Regulations, Investigations and Compliance
- Physical (Environmental) Security
Prerequisites: Understanding of Operating Systems and Encryption. Familiarization with TCP/IP, security concepts, and system administration experience is also helpful.
Additionally, students should have knowledge in one or more of the following four areas:
- TCP/IP Network Operation
- How computers address and deliver traffic at a local and network level
- Network, 32-bit, dotted-decimal addressing and subnetting
- Standard network architecture such as firewalls, proxies, DMZs, etc.
- Software Design and Testing
- Development models such as waterfall, agile, etc.
- Maturity models
- Security issues with programming languages, buffer overflows, etc.
- Configuration management
- How algorithms are used in SSL, IPSec, Digital Signatures, etc.
- Some of the generally accepted, high-level IT frameworks
- ITIL, NIST, PCI DSS, ISO 27000