ISSEP Certification Training | Information System Security Engineering Professional Training Course Description
Learn how to incorporate security into projects, applications, business processes, and all information systems in this official (ISC)2 ISSEP Certification Training or Information System Security Engineering Professional Training course.
ISSEP Certification Training; The CISSP-ISSEP concentration was developed in conjunction with the U.S. National Security Agency (NSA) providing an invaluable tool for any systems security engineering professional. As a result, CISSP-ISSEP is recognized as a great credential for those who specialize in the practical application of systems engineering principles and processes to develop a secure system.
Whether a professional is interested in writing the CISSP-ISSEP certification exam or learning about systems security engineering, this ISSEP Certification Training course provides a review of information security concepts and practices while helping students identify areas they need to study before writing the exam
Duration: 4 days
ISSEP Certification Training - Customize It
• We can adapt this ISSEP Certification Training | Information System Security Engineering Professional Training course to your group’s background and work requirements at little to no added cost.
• If you are familiar with some aspects of this ISSEP Certification Training course, we can omit or shorten their discussion.
• We can adjust the emphasis placed on the various topics or build the ISSEP Certification Training course around the mix of technologies of interest to you (including technologies other than those included in this outline).
• If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the ISSEP Certification Training course in manner understandable to lay audiences.
ISSEP Certification Training - Audience / Target Group
• Cyber architects
• Information assurance engineers
• Individuals pursuing CISSP-ISSEP® certification
ISSEP Certification Training - Objectives:
After completing this ISSEP Certification Training or Information System Security Engineering Professional Training course, attendees will be able to:
• U.S. Government Information Assurance (IA)-Related Policies and Issuances
• Certification and Accreditation (C&A)/Risk Management Framework (RMF)
• Technical Management
• ISSE-Systems Security Engineering
ISSEP Certification Training - Course Content:
Domain 1: Systems Security Engineering
The Systems Security Engineering (SSE) is the first domain in this official CISSP-ISSEP training seminar. Domain 1 is primarily based upon the Information Systems Security Engineering (ISSE) process as described in Chapter 3 of the Information Assurance Technical Framework (IATF). Notably, this can be described as a subprocess of widely accepted Systems Engineering (SE) methodologies. Successful ISSEP students are expected to be able to tailor the applicable engineering processes to achieve the Information Assurance (IA) needs of a system.
CISSP-ISSEP Domain 1 Lessons:
• Understand the Relationship between Security Engineering and Systems Engineering
• Discover Information Protection Needs
• Define System Security Requirements
• Design System Security Architecture
• Develop Detailed Security Design
• Implement System Security
Domain 2: Certification and Accreditation / Risk Management Framework
Domain 2 of this course focuses on U.S. government Certification & Accreditation (C&A) and Risk Management Framework (RMF) related processes.
ISSEP Certification Training Domain 2 Lessons:
• Roles and Responsibilities of Stakeholders Identified within the C&A/RMF Process
• Integrate the C&A/RMF process with Systems Security Engineering
• U.S. Government C&A/RMF Process to be Applied (ex. National Information Assurance Certification and Accreditation Process [NIACAP]. DoD Information Assurance Certification and Accreditation Process [DIACAP], National Institute of Standards and Technology Special Publication [NIST SP] 800-37 rev 1)
Domain 3: Technical Management
The third domain covered in this course is Technical Management. It focuses on the support of a system and planning the Systems Security Engineering (SSE) tasks to meet program milestones and effectively use resources.
CISSP-ISSEP Domain 3 Lessons:
• Acquisition Process
• Technical Effort (Initiate, Implement, Manage and Close)
Domain 4: U.S. Government Information Assurance Related Policies and Issuances
This domain focuses on the governance documents for Information Assurance (IA) published by various entities of the U.S. government. They include high-level policies and do not delve into departments or agencies. For instance, Department of Defense (DoD) policies are included, but not component agencies such as the Army, Navy, Marines, and Air Force. Executing the SSE process requires knowledge of IA policies, which in turn shape system requirements.
ISSEP Certification Training Domain 4 Lessons:
• National Laws and Policies
• Civil Agency Policies and Guidelines
• DoD Policies and Guidelines
• Applicable International Standards
NOTE: While this training program does not have any prerequisites, the CISSP-ISSEP certification does. Additional information on these prerequisites can be found below:
To qualify for the CISSP-ISSEP certification you must be possess a CISSP certification in good standing and have a minimum of two (2) years of cumulative paid full-time work experience in one or more of the domains in the respective concentration: (1) Systems Security Engineering, (2) Certification and Accreditation (C&A) / Risk Management Framework (RMF), (3) Technical Management, and (4) U.S. Government Information Assurance Related Policies and Issuances