Mohamed Atef – Certified Information Systems Security Professional- CISSP 2020

Description

Mohamed Atef – Certified Information Systems Security Professional- CISSP 2020 download, Mohamed Atef – Certified Information Systems Security Professional- CISSP 2020 review, Mohamed Atef – Certified Information Systems Security Professional- CISSP 2020 free

Mohamed Atef – Certified Information Systems Security Professional- CISSP 2020

Certified Information Systems Security Professional | CISSP
Become a certified information systems security professional and enjoy a bright future. We can help you enhance your learning for the CISSP certification.

The CISSP Online Course provides a comprehensive review of the knowledge required to effectively design, engineer and manage the overall security posture of an organization. This training course will help students review and refresh their knowledge and identify areas they need to study for the CISSP exam.

Who Should Enroll
The training seminar is ideal for those working in positions such as but not limited to:

• Security Consultant
• Security Manager
• IT Director/Manager
• Security Auditor
• Security Architect
• Security Analyst
• Security Systems Engineer
• Chief Information Security Officer
• Security Director
• Network Architect

Course Objectives

After completing this course, the student will be able to:

• Understand and apply fundamental concepts and methods related to the fields of information technology and security.
• Align overall organizational operational goals with security functions and implementations.
• Understand how to protect assets of the organization as they go through their lifecycle.
• Understand the concepts, principles, structures and standards used to design, implement, monitor and secure operating systems, equipment, networks, applications and those controls used to enforce various levels of confidentiality, integrity and availability.
• Implement system security through the application of security design principles and application of appropriate security control mitigations for vulnerabilities present in common information system types and architectures.
• Understand the importance of cryptography and the security services it can provide in today’s digital and information age.
• Understand the impact of physical security elements on information system security and apply secure design principles to evaluate or recommend appropriate physical security protections.
• Understand the elements that comprise communication and network security coupled with a thorough description of how the communication and network systems function.
• List the concepts and architecture that define the associated technology and implementation systems and protocols at Open Systems Interconnection (OSI) model layers 1-7.
• Identify standard terms for applying physical and logical access controls to environments related to their security practice.
• Appraise various access control models to meet business security requirements.
• Name primary methods for designing and validating test and audit strategies that support business requirements.
• Enhance and optimize an organization’s operational function and capacity by applying and utilizing appropriate security controls and countermeasures.
• Recognize risks to an organization’s operational endeavors and assess specific threats, vulnerabilities and controls.

Your Instructor

Mohamed Atef
Cyber Security Consultant / Certified Instructor with more than 20 years of experience implementing and managing Cyber Security project such as:

• ISMS Implementation
• CS Standards / Compliance
• Security Operation Center
• BCP/DRP
• Penetration Testing
• CS Enterprise Technical Solutions

3 Books published
14 best sellers online courses

Course Curriculum

Introduction
Introduction (2:40)
Student Feedback (1:04)
Student Feedback 2020 (1:07)
Student Portal (1:47)

Course Introduction
1. Introduction (0:47)
2. CISSP Training (4:26)
CISSP Certification (5:56)
CISSP Exam
Course Outline (4:13)
Course Flow (4:17)
Course Materials (4:43)
Latest CISSP Exam Practice Questions – Very Important
Before You Start (2:50)

Domain 1: Security and Risk Management
NIST (8:12)
1.1 Understand and Apply CIA (11:28)
1.2 Evaluate and apply security governance principles (8:13)
1.2.2 NIST 800-100 (7:30)
1.2.3 Security Governance – Requirements (7:30)
1.2.4 The Organizational Culture’s (11:06)
1.2.5 Due Care and Due Diligence (7:27)
1.2.6 Exam Question (4:11)
Guidelines for Applying Security Governance Principles
1.3 Determine compliance requirements (8:42)
1.4 Understand legal and regulatory issues (2:56)
1.4.1 Exam Question (2:13)
1.4.2 Computer Crime (8:37)
1.4.3 Ethics (2:26)
1.5 Guidelines for Upholding Professional Ethics in Security
1.6.1 Security Policy Framework (24:52)
1.6.2 Resources: CIS (4:17)
1.6.3 Exam Tips (1:45)
1.6.4The Relationship Between Security Document Types (3:42)
1.6.5 Guidelines for Drafting Security Documentation
1.7 Identify, analyze, and prioritize Business Continuity (BC) requirements (8:17)
1.7.1 BCP Phases (12:01)
1.7.2 Business Impact Analysis – BIA (10:41)
1.7.3 NIST SP 800-34 (8:06)
1.7.4 MTD-RTO-RPO (11:29)
1.7.5 MTTF-MTTR (6:12)
1.7.6 Business Continuity Controls (9:42)
1.7.7 High availability and Fault Tolerance (11:28)
1.7.8 Exam Tips (1:27)
Guidelines for Applying Business Continuity Plan Fundamentals
1.8 Contribute to and enforce personnel security policies and procedures (12:59)
1.8.1 Insider Threat Prevention (15:20)
1.8.2 Employees Privacy (4:50)
1.8.3 Social Media Security (9:45)
1.9 Understand and apply risk management concepts (10:53)
1.9.1 Qualitative vs Quantitively Assessment (8:24)
1.9.2 Risks Formula (11:42)
1.9.3 Risk Management Strategies (10:12)
1.9.4 Security Controls (6:28)
1.9.5 Nist 800-37 (2:18)
1.9.6 Risk Register (1:17)
1.9.7 Exam Tips (1:58)
Guidelines for Implementing Risk Management
1.10 Understand and apply threat modeling concepts and methodologies (5:46)
10.1.1 STRIDE Modle (5:23)
10.1.2 Threat Intelligence Sources (3:07)
Guidelines for Implementing Threat Modeling
1.11 Apply risk-based management concepts to the supply chain (6:17)
1.11.1 Vendor Management Life Cycle (5:26)
1.12 Establish and maintain a security awareness, education, and training program (18:39)
1.12.1 Awareness resources (9:09)
1.12.3 Some Important Policies (7:20)
Domain 1 Evaluation Exam

Domain 2: Asset Security
2.1 Identify information and assets (14:19)
2.1.1 Assets Classification and Labeling (12:44)
2.1.2 Military / Commercial Classification (12:42)
2.1.3 Sample of Classification Tool 1 (2:49)
2.1.4 Sample of Classification Tool 2 (2:30)
2.1.5 Data Lost Prevention (3:11)
2.1.6 Sample of DLP Tool (3:18)
2.1.7 Guidelines for Implementing Asset Classification
2.2 Determine and maintain information and asset ownership (3:33)
2.3 Protect privacy (7:49)
2.3.1 Guidelines for Implementing Privacy Protection
2.4 Ensure appropriate asset retention (12:07)
2.4.1 Personnel Retention
2.5 Determine data security controls (12:51)
2.5.1 Data Encryptian (1:46)
2.6 Establish information and asset handling requirements
Domain 2 Evaluation Exam

Domain 3: Security Architecture and Engineering
3.1 Introduction to Security Architecture and Engineering (3:50)
3.2 Security Engineering Lifecycle (4:13)
3.3 NISP SP 14-27 (11:36)
3.4 Trusted Computing Base _ TCB (9:21)
3.4.1 TCB Vulnerability (9:46)
3.5 Security Models (17:07)
3.6 TCSEC (5:42)
3.7 ITSEC (6:05)
3.8 Security Architecture Questions (3:16)
3.9 Enterprise Security Architecture (5:05)
3.10 Virtualization (9:50)
3.11 Fault Tolerance (6:30)
3.12 Server Fault Tolerance Techniques (2:05)
3.13 New Technology (6:27)
3.14 Cryptography (16:30)
3.15 Alternative Ciphers (7:55)
3.16 Symmetric Encryption (12:42)
3.17 Asymmetric Encryption (13:51)
3.18 Hash (6:04)
3.19 Physical Security (7:38)
3.20 Physical Access barriers (9:41)
3.21 Power Issue (3:10)
3.22 Fire (5:27)
3.23 Domain Evaluation

Domain 4: Communication and Network Security
4.1 The OSI Model (17:26)
4.2 TCP-IP Model (2:48)
4.3 Network Architecture Components (17:08)
4.4 Firewall (10:42)
4.5 Network Types and Topolgies (8:36)
4.6 Remote Access Technology (18:33)
4.7 Wireless Network (7:12)
4.8 Network Attacks (8:53)
4.9 Remote Access Security Mechanisms (2:06)
4.10 RAID (6:47)
4.11 Backup (5:49)
4.12 Network Questions (1:12)
Domain 4 Evaluation

Domain 5: Identity and Access Management (IAM)
87. Access Control (6:50)
88. Authorization (19:23)
89. Authentication (18:50)
90. Single Sign on SSO (13:10)
91. Central Administration (RADUIS) (4:16)
92. Access Control Attack (17:15)
93. Instrusion Detection System (IDS) (6:58)
94. Access Control Inportant exam area (4:15)
95. Access Control Questions (8:02)
Domain 5 Evaluation Exam

Cloud Security
96. Introduction to Cloud Security (2:50)
97. NIST 800-145 (1:55)
98. IaaS vs PaaS vs SaaS (2:25)
99. SaaS (4:25)
100. PaaS (2:04)
101. IaaS (1:59)
102. Storage Architecture (1:25)
103. Data Life Cycle Security (4:27)
104. Hypervisor (4:49)
105. Virtualization Security (5:26)
106. Perimeter Security (6:05)

Domain 6: Security Assessment and Testing
107. Introduction Security Assessment and Testing (11:20)
108. Test Output (4:33)
109. Vulnerability asessment – Part 1 (2:16)
110. Vulnerability asessment -Part 2 (3:16)
112. Nessus VA (13:24)
113. Nessus VA- Part 2 (14:05)
114. Nessus VA Report (5:20)
115. OWASP ZAP – VA (5:06)
116. Nexpose VA (5:05)
117. Penetration testing (8:33)
118. Reconnaissance Demo -Maltego 2 (7:58)
119. Scanning Demo -Zenmap (5:06)
120. Exploitation Demo -MetaSploit 2 (14:33)
121. Event Log Review 2 (7:18)
122. NIST 800-92 (2:56)
123. SIEM Solution (6:16)
124. SIEM Solution Demo – Qradar (3:09)
125. Code Review (5:20)
126. Security KPI’s (6:57)
Domain 6 Evalution Exam

Domain 7: Security Operations
127. Introduction to Security Operation 2 (1:40)
128. Security Operation 2 (9:53)
Domain 7 Evaluation Exam

Domain 8: Software Development Security
129. The System Life Cycle (6:45)
130. Software development Methods (6:42)
132. Change Control Process (3:07)
133. Security Consideration (1:54)
134. Software Control (2:50)
135. Introduction to SQL Injection 2 (11:26)
136. What is SQL Injection (11:26)
Domain 8 Evaluation Exam

Frequently Asked Questions:

1. Innovative Business Model:
   • Embrace the reality of a genuine business! Our approach involves forming a group buy, where we collectively share the costs among members. Using these funds, we purchase sought-after courses from sale pages and make them accessible to individuals facing financial constraints. Despite potential reservations from the authors, our customers appreciate the affordability and accessibility we provide.
2. The Legal Landscape: Yes and No:
   • The legality of our operations falls into a gray area. While we lack explicit approval from the course authors for resale, there’s a technicality at play. When procuring the course, the author didn’t specify any restrictions on resale. This legal nuance presents both an opportunity for us and a boon for those seeking budget-friendly access.
3. Quality Assurance: Unveiling the Real Deal:
   • Delving into the heart of the matter – quality. Acquiring the course directly from the sale page ensures that all documents and materials are identical to those obtained through conventional means. However, our differentiator lies in going beyond personal study; we take an extra step by reselling. It’s important to note that we are not the official course providers, meaning certain premium services aren’t included in our package:
     • No coaching calls or scheduled sessions with the author.
     • No access to the author’s private Facebook group or web portal.
     • No entry to the author’s exclusive membership forum.
     • No direct email support from the author or their team.

   We operate independently, aiming to bridge the affordability gap without the additional services offered by official course channels. Your understanding of our unique approach is greatly appreciated.

Refund is acceptable:

• Firstly, item is not as explained
• Secondly, Item do not work the way it should.
• Thirdly, and most importantly, support extension can not be used.

Thank you for choosing us! We’re so happy that you feel comfortable enough with us to forward your business here.