Official (ISC)² CBK Training Seminar for CISSP Course Summary

Leadership and operations

This course is designed for information security professionals with deep technical and managerial knowledge and experience to effectively design, design and manage an organization's overall security system. This training course provides a comprehensive overview of information system security concepts and industry best practices covering the following eight CISSP Common Body of Knowledge (CBK) areas.®

Course features vary by delivery method and include:

• Official (ISC)² learning materials delivered via classroom book and instructor-led online instructor, and LMS for self-study.
• Authorized Instructor (ISC) Instruction² (In-class and Instructor-Led Online Class only)
• Authorized Teacher Support (ISC)² (for self-study only))
• Peer-to-peer discussions (in-class and online instructor-led only)
• Learning activities including case studies and applied scenario throughout the course
• Interactive flash cards
• Post-course assessment
• Glossary
• Who must attend

The course is ideal for those working in positions such as but not limited to:

• Information Technology Director
• Information Security Director
• Technical Director
• Compliance manager/specialist
• Security Director
• Information Architect
• IT Specialist/Director/Manager
• Information Manager/Information Risk Manager or Consultant
• Security Administrator
• Architect/Security Analyst
• Security Consultant
• security manager
• Security engineer / Security engineer

Course program:

Chapter 1: Information Security Environment
Chapter 2: Security of Information Assets
Chapter 3: Identity and Access Management
Chapter 4: Architecture and Design of Security Systems
Chapter 5: Communication and Network Security
Chapter 6: Software Development Security
Chapter 7: Security Assessment and Testing
Chapter 8: Security Operations
Chapter 9: Putting it all together
Chapter 10: CISSP Certification Information

Note: Throughout this course, exam areas may be covered in several chapters. The course includes a table indicating where the objectives of the exam plan are covered within the course. Unique icons are also used in course materials to identify exam plan goals.

Course Objectives:

At the end of this course students will be able to:

• Apply fundamental concepts and methods related to the fields of information technology and security
• Aligning the organization's overall operational goals with security functions and implementations
• Determine how to protect your organization's assets as they go through their lifecycle
• Using the concepts, principles, frameworks, and standards used to design, implement, monitor, and secure operating systems, hardware, networks, applications, and controls used to provide varying levels of confidentiality, integrity, and availability
• Application of security design principles to select appropriate measures to address vulnerabilities present in common types and architectures of information systems
• Explain the importance of cryptography and the security services it can provide in today's digital and information age
• Assessment of physical security elements depending on the needs of the information system
• Evaluation of the elements that make up communication and network security, in accordance with the needs for information security
• Using the concepts and architecture that define related technologies and systems and implementation protocols at the levels of the Open Systems Interconnection (OSI) model 1-7 to meet information security needs
• Determine appropriate access control models to meet business security requirements
• Applying physical and logical access control models to meet information security needs
• Delineation of the main methods for developing and validating test and audit strategies that support information security requirements
• Apply appropriate security controls and countermeasures to optimize the organization's operational function and capability
• Risk assessment of information systems for the operational activities of the organization
• Identify appropriate controls to address specific threats and vulnerabilities
• Application of information systems security concepts to reduce the risk of software and system vulnerabilities throughout the life cycle of systems

I-OSINT Level 1 - Open-source Intelligence for non-IT professionals

  About the program:

A practical course that allows you to work out the methods and tools necessary for the tasks of reconnaissance (search) of information based on open sources. The course covers the complete process of conducting exploration - from the correct preparation of the process itself to its effective completion through the creation of comprehensive reporting. More than two-thirds of the course is practical exercises that allow you to actually search for information about events, people and organizations during the training. The practical part contains a wide range of means and tools, because each search object is a kind of "chest" in which you need to find where the "castle" is located.

  For whom:

•   · Journalists
•   Recruiters
•   Representatives of law enforcement organizations
•   Researchers
• · Private detectives
• intelligence personnel
• social analytics
• insurance investigators

  The course does not require specialized IT skills

  This course will help:

• Analyze the purpose of intelligence and the requirements for its detailing
• · Understand the data collection lifecycle
•   Prepare a safe process for conducting research
•   Learn how to use the Opensource Intelligence algorithm in practice: Social Intelligence, Human Intelligence and others
•   · During the course, carry out a real search for information about events, people and organizations (access to social network data, search for objects by geolocation and maps, online cameras, metadata)
•   Learn how to collect data from Darkweb
•   Learn to process disparate information about the object of study
• · Generate a correct report on the results of research

Trainer:

  Yuriy Samokhvalov is an instructor-expert in network technologies for world certifications, an active participant in the preparation of a portfolio of cybersecurity courses for both beginners and specialists, a certified SCS designer according to Raichle-de-Massari criteria. Yuri's experience includes the design, implementation and management of the company's network infrastructure, deployment and IT security solutions for various industries, including the government and mining and processing sectors.

  COURSE PROGRAM:

1. What is OSINT?
2.    OSINT Overview

                ・Reconnaissance process

•    OSINT Documentation

1. Secure OSINT
2.    Researcher risks
3.    Secure platform for OSINT
4.    Alternative profile for OSINT
5. OSINT Core Skills.
6.    Working with search engines
7.    Google search engine
8.    Web data collection
9.    Reverse Search and Image Exploration
10.    Map-based research
11.    Content Translation
12. People Research (People OSINT)
13. Usernames and avatars
14.    Email
15.    Addresses and phone numbers of users
16.    Use of social networks
17. Business Research (Business OSINT)
18. Company Documents and Resources
19. Exploring the Deep and Dark Web

Training format From 10.00 to 17.30, with a break for lunch and coffee breaks