The CISSP (Certified Information Systems Security Professional) certification was developed to meet the current demands and growing needs of the computer industry.
This training course provides students with comprehensive, up-to-date knowledge that adheres to the (ISC)2 (International Information System Security Certification Consortium, Inc.) certification requirements – considered to be the gold-standard for security professionals.
This certification is essential for a career involving security tasks, and prepares you with the skills needed to protect your organisation from sophisticated cyber-attacks.
Students gain a solid background on security concerns, communications, infrastructure, basic cryptography and operations, as well as the hands-on experience needed to design, implement and manage a security program.
The Certified Information Systems Security Professional (CISSP) certification is recognised in Singapore and internationally in the information security market. CISSP online training helps to confirm an information security professional’s managerial and technical knowledge and experience to constructively engineer, design, and manage the overall security posture of an organisation. The CISSP Common Body of Knowledge (CBK) offers a wide range of topics that ensures its applicability across all disciplines in the information security field.
Course Outline
The 5-day course heavily focuses on the eight fundamental domains of Information Security.
Domain 1: Risk and Security Management
1.1 Understand and apply concepts of integrity, confidentiality and availability
1.2 Assess and apply security governance principles
1.3 Establish compliance requirements
1.4 Understand regulatory and legal issues that concern information security in a global context
1.5 Understand, promote, and adhere to professional ethics
1.6 Develop, document, and implement security policy, procedures, standards and guidelines
1.7 Analyse, identify and prioritise Business Continuity (BC) requirements
1.8 Enforce and contribute to personnel security guidelines and procedures
1.9 Apply and understand risk management concepts
1.10 Apply and understand threat modelling methodologies and concepts
1.11 Implement risk-based management concepts in the supply chain
1.12 Maintain and establish a security education, awareness and training program
Domain 2: Asset Security
2.1 Identify and classify assets and information
2.2 Determine and maintain asset ownership and information
2.3 Protect privacy
2.4 Ensure proper asset retention
2.5 Determine data security controls
2.6 Establish information and asset handling requirements
Domain 3: Security Architecture and Engineering
3.1 Manage and Implement engineering processes using secure design principles
3.2 Recognise the basic concepts of security models
3.3 Select controls based on systems security requirements
3.4 Recognise security capabilities of information systems (e.g., encryption/decryption, memory protection, Trusted Platform Module (TPM ),)
3.5 Mitigate and assess the vulnerabilities of security architectures, solution elements and designs
3.6 Mitigate and assess weaknesses in web-based systems
3.7 Mitigate and assess weaknesses in mobile systems
3.8 Mitigate and assess weaknesses in embedded devices
3.9 Apply cryptography
3.10 Apply security principles to facility and site design
3.11 Implement facility and site security controls
Domain 4: Communication and Network Security
4.1 Apply secure design concepts in network architectures
4.2 Secure network components
4.3 Apply secure communication channels according to design
Domain 5: Identity and Access Management (IAM)
5.1 Control logical and physical access to assets
5.2 Manage authentication and identification of people, devices, and service
5.3 Integrate identity as a third-party service
5.4 Manage and implement authorisation mechanisms
5.5 Manage the identity and access provisioning lifecycle
Domain 6: Security Assessment and Testing
6.1 Design and verify tests, assessments and audit strategies
6.2 Manage security control testing
6.3 Manage security process data (e.g., technical and administrative)
6.4 Examine test output and generate a report
6.5 Manage or facilitate security audits
Domain 7: Security Operations
7.1 Support and understand investigations
7.2 Understand requirements for investigation types
7.3 Conduct monitoring and logging activities
7.4 Securely provisioning resources
7.5 Apply and understand foundational security operations concepts
7.6 Apply resource protection techniques
7.7 Conduct incident management
7.8 Maintain and operate detective and preventive measures
7.9 Support and implement patch and vulnerability management
7.10 Understand and Engage in change management processes
7.11 Apply recovery strategies
7.12 Apply Disaster Recovery (DR) processes
7.13 Test Disaster Recovery Plans (DRP)
7.14 Participate in Business Continuity (BC) exercises and planning
7.15 Manage and implement physical security
7.16 Address security concerns and personnel safety
Domain 8: Software Development Security
8.1 Understand and incorporate security in the Software Development Life Cycle (SDLC)
8.2 Recognise and apply security controls in development environments
8.3 Evaluate the benefits of software security
8.4 Evaluate the security impact of acquired software
8.5 Define and implement secure coding standards and guidelines
This training course is targetted toward those who are experienced information security professionals in Singapore who wish to gain an internationally recognised accreditation while expanding their knowledge, including:
- IT Consultants
- Information Security Officers
- Network Administrators
- Security Consultants
- Security Device administrators
- Security Engineers
- Security Managers
- Security Policy writers
- Privacy Officers
Exam Details
The structure of the CISSP certification examination is as follows:
No. of questions: 250 questions & advanced innovative questions
Duration: 6 hours
Passing mark: 700 out of 1000 points
Languages Available: English, French, German, Japanese, Simplified Chinese, Korean, Spanish, etc.
Location: Pearson Vue Testing Center
Prerequisite
Participants must either have a prior full-time work experience of at least five years in 2 or more of the eight domains of the (ISC)2 (International Information Systems Security Certification Consortium) CISSP Common Body of Knowledge (CBK), or hold a 4-year college degree equivalent.
Funding
This course is available as a funded course with support from schemes including SkillsFuture, UTAP, and company sponsorships. Please send us an enquiry online to check your eligibility to take this as a funded course, or drop us a call.
Singapore
2024
Jan
15 – 19
Feb
19 – 23
Mar
11 – 15
Apr
15 – 19
May
6 – 10
Jun
10 – 14
Jul
1 – 5
Aug
19 – 23
Sep
16 – 20
Oct
14 – 18
Nov
18 – 22
Dec
16 – 20
Duration: 5 Days
Course Fee
| Course Fee w/o GST | $1,750.00 |
| Course Fee w. GST | $1,890.00 |
| SME (Company Sponsored) – All Singaporean and Permanent Resident Employee | $665.00 |
| Singapore Citizens aged 40 years old and above | $665.00 |
| Singapore Citizens and Permanent Residents aged 21 years old and above | $1,015.00 |
Exam Fee
- Exam Voucher is optional and can be purchase separately for $1,050.00