• Five Days of Official (ISC)² Training from an Authorized CISSP-ISSMP Instructor
• Official (ISC)² CISSP-ISSMP Courseware
• Official (ISC)² CISSP-ISSMP Student Guide
• Practical Experience with Realistic Scenario-Based Learning Activities
• 60 Days of OnDemand Access to the Recordings of your CISSP-ISSMP Session (Video & Audio)
  • For Live OnLine Training Only

  *CISSP-ISSMP Exam Voucher Available for Additional Cost ($399 USD)*

Domain 1: Security Leadership and Management

The first domain reviewed in this official CISSP-ISSMP course is called Security Leadership and Management. It focuses on managing an organization’s information security program. Domain 1 is built upon the concepts of information security from an organizational perspective and emphasizes information security’s role in supporting the overall goal of the organization. Emphasis is placed on application and management of appropriate processes and technologies to achieve organizational goals and objectives for information security.

CISSP-ISSMP Domain 1 Lessons

• Security’s Role in the Organization’s Culture, Vision, and Mission
• Organizational Governance
• Information Security Strategies
• Data Classification
• Security Policy Framework
• Security Requirements in Contracts and Agreements
• Risk Management Program
• Security Aspects of Change Control
• Security Awareness and Training Programs
• Security Metrics (Define, Measure, and Report)
• Security Budget (Prepare, Obtain, and Administer)
• Security Organization (ex. Roles and Responsibilities, Determine FTE’s, Performance Evaluation)
• Project Management Principles (ex. Time, Scope and Cost Relationship, Work Breakdown Structure)

Domain 2: Security Lifecycle Management

The Security Lifecycle Management domain assesses the candidate’s knowledge and skill in integrating information security principles and processes into new business initiatives, as well as the System Development Life Cycle (SDLC), including the operations and maintenance and disposal phases.

CISSP-ISSMP Domain 2 Lessons

• Integration of Security into the System Development Lifecycle (SDLC)
• New Business Initiatives and Security Architecture
• Vulnerability Management Programs (ex. Vulnerability Scanning, Penetration Testing, Threat Analysis)

Domain 3: Security Compliance Management

Domain 3 is about establishing, managing, and overseeing a process to help monitor, assess and enforce compliance with security policies and procedures.

CISSP-ISSMP Domain 3 Lessons

• Organizational Security Policies and Procedures
• Compliance Framework Exceptions
• Internal and External Audit Process

Domain 4: Contingency Management

The Contingency Management domain covers the planning and implementing processes for reducing the impact of adverse events, such as natural or man-made disasters, virus outbreak, or equipment failure.

CISSP-ISSMP Domain 4 Lessons

• Contingency Plans
• Recovery Strategies
• BCP and DRP plans (ex. Lessons Learned, Architecture Changes)

Domain 5: Law, Ethics and Incident Management

The last domain in this CISSP-ISSMP course is Law, Ethics and Incident Management. It covers the laws and regulations that apply to the organization, as well as the implications of non-compliance. This domain also assesses the core knowledge and skill that is widely accepted across most jurisdictions.

CISSP-ISSMP Domain 5 Lessons

• Laws that Relate to Information Security
• Incident Handling and Investigation Processes
• Management Issues Related to the (ISC)² Code of Ethics

The CISSP-ISSMP training course is a great fit for professionals who currently hold a CISSP certification, with some example job titles including but not limited to:

• Chief Information Officer
• Chief Information Security Officer
• Chief Technology Officer
• Senior Security Executive

Any questions?

Read our Frequently Asked Questions page or simply send your questions to us directly via our Contact Us page or our Live Chat.