Led by an (ISC)² authorized instructor, this Official (ISC)² CBK Training Seminar for the CISSP-ISSMP focuses on establishing, presenting and governing information security programs. Specifically, this course contains deep managerial elements, such as project management, setting up and delivering a security awareness program, and managing a business continuity planning program. Successful CISSP-ISSMP students will be able to establish, present, and govern information security programs demonstrating management and leadership skills.
What Comes With Registration?
- Four Days of Official (ISC)² Training from an Authorized CISSP-ISSMP Instructor
- Official (ISC)² CISSP-ISSMP Courseware
- Official (ISC)² CISSP-ISSMP Student Guide
- Practical Experience with Realistic Scenario-Based Learning Activities
- 60 Days of OnDemand Access to the Recordings of your CISSP-ISSMP Session (Video & Audio)
- For Live OnLine Training Only
*CISSP-ISSMP Exam Voucher Available for Additional Cost ($399 USD)*
This official (ISC)² training seminar has no prerequisites and the scheduled dates below are open for registration.
NOTE: While this training program does not have any prerequisites, the CISSP-ISSMP certification does. Additional information on these prerequisites can be found below:
To qualify for the CISSP-ISSMP certification you must be possess a CISSP certification in good standing and have a minimum of two (2) years of cumulative paid full-time work experience in one or more of the domains in the respective concentration: (1) Security Leadership and Management, (2) Security Compliance Management, (3) Law, Ethics, and Incident, Management, (4) Security Lifecycle Management, and (5) Contingency Management
Domain 1: Security Leadership and Management
The first domain reviewed in this official CISSP-ISSMP course is called Security Leadership and Management. It focuses on managing an organization’s information security program. Domain 1 is built upon the concepts of information security from an organizational perspective and emphasizes information security’s role in supporting the overall goal of the organization. Emphasis is placed on application and management of appropriate processes and technologies to achieve organizational goals and objectives for information security.
CISSP-ISSMP Domain 1 Lessons
- Security’s Role in the Organization’s Culture, Vision, and Mission
- Organizational Governance
- Information Security Strategies
- Data Classification
- Security Policy Framework
- Security Requirements in Contracts and Agreements
- Risk Management Program
- Security Aspects of Change Control
- Security Awareness and Training Programs
- Security Metrics (Define, Measure, and Report)
- Security Budget (Prepare, Obtain, and Administer)
- Security Organization (ex. Roles and Responsibilities, Determine FTE’s, Performance Evaluation)
- Project Management Principles (ex. Time, Scope and Cost Relationship, Work Breakdown Structure)
Domain 2: Security Lifecycle Management
The Security Lifecycle Management domain assesses the candidate’s knowledge and skill in integrating information security principles and processes into new business initiatives, as well as the System Development Life Cycle (SDLC), including the operations and maintenance and disposal phases.
CISSP-ISSMP Domain 2 Lessons
- Integration of Security into the System Development Lifecycle (SDLC)
- New Business Initiatives and Security Architecture
- Vulnerability Management Programs (ex. Vulnerability Scanning, Penetration Testing, Threat Analysis)
Domain 3: Security Compliance Management
Domain 3 is about establishing, managing, and overseeing a process to help monitor, assess and enforce compliance with security policies and procedures.
CISSP-ISSMP Domain 3 Lessons
- Organizational Security Policies and Procedures
- Compliance Framework Exceptions
- Internal and External Audit Process
Domain 4: Contingency Management
The Contingency Management domain covers the planning and implementing processes for reducing the impact of adverse events, such as natural or man-made disasters, virus outbreak, or equipment failure.
CISSP-ISSMP Domain 4 Lessons
- Contingency Plans
- Recovery Strategies
- BCP and DRP plans (ex. Lessons Learned, Architecture Changes)
Domain 5: Law, Ethics and Incident Management
The last domain in this CISSP-ISSMP course is Law, Ethics and Incident Management. It covers the laws and regulations that apply to the organization, as well as the implications of non-compliance. This domain also assesses the core knowledge and skill that is widely accepted across most jurisdictions.
CISSP-ISSMP Domain 5 Lessons
- Laws that Relate to Information Security
- Incident Handling and Investigation Processes
- Management Issues Related to the (ISC)² Code of Ethics
No public dates are currently scheduled. Request Group Training!