CISSP and (ISC) 2 Overview :
International Information Systems Security Certification Consortium Established in 1989
Establish the CBK (Common Body of Knowledge) also called the domains of security
In 2004 CISSP was ISO 17024 certified
(ISC)2 - Certifications
CISSP – Certified Information Systems Security Professional
(Level: Advanced)
SSCP – Systems Security Certified Practitioner (Level: Intermediate)
CAP - Certification and Accreditation Professional (Level: Intermediate)
Associate of (ISC)²
ISSEP: Information Systems Security Engineering Professional,
ISSAP: Information Systems Security Architecture Professional, and
ISSMP: Information Systems Security Management Professional
CISSP Domains (CBK)
Access Control Systems and Methodology
Telecommunications and Network Security
Security Management Practices
Applications and System Development Security
Cryptography
Operations Security
Business Continuity Planning
Law, Investigations and Ethics
Physical Security
Security Architecture
Exam
Fee $599
Early registration fee $499
250 Multiple choice questions
25 are beta question
6 hours to complete the exam
Pass with a 700 or higher score
Scantron test forms
Pencils & dictionary
You can bring water, aspirin, food .
Exam Descriptions
“Inch deep and a mile wide”
you need to know everything about everything, like elliptic curves or derivation of the factors of the
product of large prime numbers. Just learn the words and be able to associate them with concepts ,like keystream generation .
Applicant Requirements :
Subscribe to the (ISC)2 Code of Ethics
4 years direct full-time security professional work or 3 years plus college degree or 2 years plus a Bachelor’s Degree and a Master’s.
Degree in Information Security
Recertification every 3 years with 120 CPE
Annual maintenance fee $85
CISSP Endorsement
(ISC)2 Associate program
(ISC)2 Code of Ethics
Code of Ethics Preamble:
Safety of the commonwealth, duty to our principals, and to each other requires that we adhere, and be seen to adhere, to the highest ethical standards of behavior. Therefore ,strict adherence to this code is a condition of certification.
Code of Ethics Canons:
Protect society, the commonwealth, and the infrastructure.
Act honorably, honestly, justly, responsibly, and legally.
Provide diligent and competent service to principals.
Advance and protect the profession.
Textbooks
Official (ISC)2 Guide to the CISSP Exam, by Susan Hansche,
John Berti and Chris Hare, (ISC)2 Press – AuerBach
Publications, 2004, ISBN 0-8493-1707-X
All in One CISSP Certification Exam Guide, by Shon Harris,
McGrawHill – Osborne Press, 2002, ISBN 0-07-219353-0
The CISSP Prep Guide: Gold Edition, by Ronald L. Krutz &
Russell Dean Vines, Wiley Press, 2002, ISBN 047126802X
The CISSP Prep Guide: Mastering the CISSP and ISSEP
Exams, Second Edition, by Ronald L. Krutz & Russell Dean
Vines, Wiley Press, 2004, ISBN 076455915X
Information Security Management Handbook CD-ROM 2005
Edition, by various Authors, AuerBach Publications, 2005,
ISBN 0849339472
Preparing for the exam
Read more than one CISSP exam prep book
Attend training
Submerse yourself in information security
Take practice exams
Study weak areas
Know your learning style
Know the security principles
Know the definitions (Language of the discipline)
Websites :
Sites for CISSP
(ISC)2 http://www.isc2.org/
CISSP.com http://www.CISSP.com
CISSP OSG http://www.CCCURE.org
CISSP World
Security Docs http://www.securitydocs.com/Certifications/CISSP
Professional Organizations
(ISC)2 https://www.isc2.org
ISSA http://www.issa.org
ASIS http://www.asisonline.org
SANS http://www.sans.org
ISACA http://www.isaca.org/
Computer Security
Institute http://www.gocsi.com/
AMA
http://www.amanet.org (For Managers)
InfraGard (FBI) http://www.infragard.net
Women in Technology
http://www.witi.com/
Secure Business Quarterly
http://www.sbq.com/
Many, many more…
Action Items
Order your books
Look into practice exams
Some books come with sample exams.
Download the CISSP study guide form (ISC)2 , various resources
www.4shared.com
www.rapidlibrary.com
www.sharebowl.com …….
Check out the study sites
Join or start a study group
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment