Training — Workshop Certified Information Systems Security Professional
(CISSP)
Course Structure
Our custom 5-day CISSP workshop is the most comprehensive, complete course
covering the entire information systems security Common Body of Knowledge
(CBK). The benefit of the workshop is, of course, to help the
individual prepare for the exam. However, it also provides practical
experience, and serves as a very good learning tool for concepts and topics
related to all aspects of today’s information systems security.
What separates Bradley Consulting from others offering CISSP training is the
expert level knowledge of our CISSP Instructors, proven record of
accomplishment, and hands-on exercises practiced during class.
The CBK is the compilation and distillation of all information systems security
material, collected internationally, of relevance to information systems
security professionals. At course completion all attendees will be
given a signed endorsement by their CISSP Instructor needed to complete their
certification process.
INDEXFollowing the
CBK, the course covers the following modules:
Conveniently located across the US, our CISSP instructors are veterans of
Network Security/Infrastructure and Information Systems. During our
extensive worldwide travel, we have been dedicated to ensuring information
systems security professionals have an opportunity to learn the CBK in-depth and
implement industry best practices on a live network. Attendees will be
prepared for certification examinations and practitioners of staying current on
the ever-evolving domains within the information systems security field.
•
High-level review of the main topics.
•
Identifies topic areas students should study for exam preparation.
•
Provides in-depth coverage of crucial areas.
•
Hands-on labs to reinforce topics discussed in each area of the CBK.
The material has been redesigned and updated to reflect the latest
information systems security issues, concerns, and countermeasures. A
detailed listing can be seen in the outline under the caption “Key
Areas of Knowledge.”
A summary of hands-on exercises are located at the bottom of this page.
The following is an outline of the modules that are presented:
MODULE1
Introduction
We discuss where we are today with information Security, how we got here and
the relevance of becoming CISSP certified. Topics covered are:
• Security Trends
• Informational Warfare
• Hacking and Attacking
• Politics and Laws
• Education
• A Brief History of CISSP
• Why become a CISSP
• The CISSP Exam
MODULE2
Security Management Practices
Security management entails the identification of an organization's
information assets and the development, documentation, and implementation of
policies, standards, procedures, and guidelines.
Management tools such as data classification and risk assessment/analysis are
used to identify threats, classify assets, and to rate system vulnerabilities so
that effective controls can be implemented.
Key Areas of Knowledge
•
Security
•
Management Concepts and Principles
•
Privacy
•
Confidentiality
•
Integrity
•
Availability
•
Authorization
•
Identification and Authentication
•
Accountability
•
Non-repudiation
•
Documentation
•
Audit
•
CIA Triad
•
Protection Mechanisms
•
Change Control/Management
•
Data Classification
•
Information/Data
•
Employment Policies and Practices
•
Policies, Standards, Guidelines and Procedures
•
Roles and Responsibilities
•
Security Awareness Training
•
Security Management Planning
MODULE 3
Access Control Systems and Methodology
Access controls are a collection of mechanisms that work together to create a
security architecture to protect the assets of the information system.
Key Areas of Knowledge
•
Accountability •
Access Control techniques •
Access Control Administration •
Access Control Models •
Bell-LaPadula •
Identification and Authentication
Techniques •
Access Control Methodologies and
Implementation •
File and Data Ownership and
Custodianship •
Methods of Attack •
Monitoring •
Penetration Testing
MODULE 4
Security Models and Architecture
The Security Architecture and Models domain contains the concepts,
principles, structures, and standards used to design, monitor, and secure
operating systems, equipment, networks, applications and those controls used to
enforce various levels of availability, integrity, and confidentiality.
Key Areas of Knowledge
•
Principles of common computer and network organizations, architectures and
designs
•
Principles of common security models, architectures, and evaluation criteria
•
Common flaws and security issues associated with system architectures and
designs
MODULE 5
Physical Security
The physical security domain provides protection techniques for the entire
facility, from the outside perimeter to the inside office space, including all
of the information system resources.
Key Areas of Knowledge
•
Facility Requirements
•
Technical Controls
•
Environment/Life Safety
•
Physical security threats
•
Elements of physical security
MODULE 6
Telecommunications, Network, and Internet Security
The telecommunications, network, and Internet security domain discusses Network
Structures, Transmission methods, Transport formats and Security measures used
to provide availability, integrity, and confidentiality:
Key Areas of Knowledge
•
International Standards
Organization/ Open Systems Interconnection •
(ISO/OSI) Layers and
Characteristics •
Communications and Network Security •
Internet/Intranet/Extranet Devices,
Protocols and Services •
Communications security techniques
to prevent, detect, and correct errors so that integrity, availability, and confidentiality of
transactions over networks may be maintained. •
E-mail security •
Facsimile security •
Secure Voice Communications •
Security boundaries and how to
translate security policy to controls •
Network Attacks and Countermeasures
MODULE 7
Cryptography
The cryptography domain addresses the principles, means, and methods of
disguising information to ensure its integrity, confidentiality, authenticity
and non-repudiation.
Key Areas of Knowledge
•
Use
of Cryptography
•
Cryptographic Concepts, Methodologies, and
Practices
•
Private Key Algorithms
•
Public Key Algorithms
•
Public Key Infrastructure (PKI)
•
System Architecture for Implementing
Cryptographic Functions
•
Methods of Attack
MODULE 8 Business Continuity Planning & Disaster Recovery
Planning
The Business Continuity Plan (BCP) domain addresses the preservation and
recovery of business operations in the event of outages.
Key Areas of Knowledge
•
Business Continuity Planning •
Disaster Recovery Planning •
Elements of business continuity
planning •
BCP/DRP Events
MODULE 9 Law, Investigations, and Ethics
The Law, Investigations, and Ethics domain addresses computer crime laws and
regulations. It covers the measures and technologies used to investigate
computer crime incidents.
Key Areas of Knowledge
•
Laws
•
Major categories and types of laws
•
Investigations
•
Major categories of computer crime
•
Incident Handling
•
Ethics
MODULE 10
Application and Systems Development Security
This domain addresses the important security concepts that apply to
application software development. It outlines the environment where software is
designed and developed and explains the critical role software plays in
providing information system security.
Key Areas of Knowledge
•
Application Issues •
Distributed Environment •
Databases and Data Warehousing •
Data/Information Storage •
Knowledge-based Systems •
Systems Development Controls •
Malicious Code •
Methods of attack
MODULE 11
Operations Security
Operations Security is used to identify the controls over hardware, media,
and the operators and administrators with access privileges to any of these
resources. Audit and monitoring are the mechanisms, tools, and facilities that
permit the identification of security events and subsequent actions to identify
the key elements and report the pertinent information to the appropriate
individual, group, or process.
Key Areas of Knowledge
•
Administrative Management
•
Concepts such as Need-to-Know/Least
Privilege and Standards of Due Care/Due Diligence
•
Control Types
•
Operations Controls
•
Resource Protection is required for
Auditing
•
Audit trails
•
Monitoring
•
Monitoring tools and techniques
•
Intrusion detection
•
Types of intrusion detection
•
Penetration testing techniques
•
Inappropriate activities
•
Threats and Countermeasures
•
Violations, Breaches, and Reporting
Hands-on Exercise Summary
1.
Exercise: Modifying
Windows 2000 default account and password settings.
2.
Exercise: Installing
and using invisible key loggers.
3.
Exercise: Installing
and using WebTrends Security Analyzer.
4.
Exercise:
Installing, configuring, and evaluating different types of port scanners
such as NMAP,
SuperScan, and WS-PING Pro.
5.
Exercise: Installing
port listeners to identify potential attacks.
6.
Exercise: Mapping
ports back to the application level.
7.
Exercise: Installing
Microsoft Software Update Service.
8.
Exercise: Securing
the Windows 2000 registry.
9.
Exercise:
Researching security trends using the CSI/FBI report, CERT, and SANS.
10.
Exercise: Attacking
a system using a Trojan horse.
11.
Exercise: Installing
the RuSecure security policy template.
12.
Exercise: Installing
and using BestCrypt.
13.
Exercise: Installing
and using a protocol analyzer.
14.
Exercise: Installing
and using PGP to encrypt email.
15.
Exercise: Use
protocol analyzer to compare plain-text vs. encrypted data.
16.
Exercise: Spoofing
IP addresses to simulate a network attack.
17.
Exercise: Performing
a physical attack against a Windows 2000 server.
18.
Exercise: Securing a
web server.
19.
Exercise: Creating a
VPN using IPSEC.
20.
Exercise: Installing
and using WinRoute Pro.
21.
Exercise: Installing
and using a honey pot.
22.
Exercise: Trojan
horse countermeasures.
23.
Exercise: Performing
Social Engineering using VisualRoute Pro.
24.
Exercise:
Fingerprinting services using Telnet, GRC IDServe, WS-Ping Pro, etc.
25.
Exercise: Installing
and using eEye Retina vulnerability scanner.
26.
Exercise: Auditing
passwords using NAT and L0phtCrack.
27.
Exercise: Using a
network sniffer to capture email and FTP passwords.
28.
Exercise: Using a
network sniffer to view the effects of a Denial of Service attack.
29.
Exercise: Installing
and using eTrust Intrusion Detection.
30.
Exercise: Installing
and using SNORT and IDScenter.
31.
Exercise: Installing
and using ZoneAlarm Pro.
32.
Exercise: Analyzing
log files using WebTrends Log Analyzer.
33.
Exercise: Modifying
and protecting log files.
34.
Exercise: Using
tools to remove Spyware applications.
For more information
about our training services please email
Ron Bradley or send a
message via the
feedback page.
