ISSAP Class A. Padgett Peterson, P.E., CISSP 24 August, 2011 Dialin 800-729-0918 PC 630688
ISSAP The CISSP has now been around for quite a while, some of us qualified in the last century Now has additional certifications ISSAP (Information Systems Security Architecture Professional) ISSEP (Information Systems Security Engineering Professional – NSA developed) ISSMP (Information Systems Security Management Professional) This series is for the ISSAP certification. You must have a CISSP before being allowed to sit for the examination.
8570 and Certification Note: IASAE - Information Assurance System Architect and Engineer C9.3.2.5.5. Year Five (CY-11): All CND-SP and IASAE Specialty positions are held by certified personnel.
ISSAP ISSAP “fundamentally the consultative and analytical process of information security. ” From https://www.isc2.org/issap.aspx
ISSAP -“Official Guide” being furnished by IS&GS - Also available from Amazon http://www.amazon.com/Official-ISC-Guide-ISSAP%C2%AE-Press/dp/1439800936
ISSAP Book is 505 pages and divided into 6 domains Access Control Cryptography Physical Security Requirements Analysis and Security Standards/Guidelines Technology Related Business Continuity Planning Telecommunications and Network Security Within these there are 25 subsets
ISSAP Access Control Systems and Methodology Cryptography Access Control Concepts Access Control Architecture Access Control Administration Design Validation Cryptography Cryptographic principles Key Management Public Key Infrastructure ISSAP Physical Security Integration Unauthorized access and facility protection Physical Security Plans Domains & Topics
ISSAP Requirements Analysis and Security Standards and Guidelines Risk analysis, data valuation, and business requirements (legal and regulatory) Current Architectures Architectural Solutions System engineering methodologies Design Validation Technology Related Business Continuity and Disaster Recovery Planning Business Impact Analysis Recovery Strategy Telecommunications and Network Security Voice and Facsimile Communications Network Architecture Network Security Network Security Design Considerations Security Configuration Development Domains & Topics
ISSAP Schedule – Ten Sessions 08/24/2011 Organization 08/29/2011 Access Control pg 3-62 08/31/2011 Access Control pg 62-117 09/07/2011 Cryptography pg 125-172 09/12/2011 Cryptography pg 173-212 09/14/2011 Physical Security pg 222-285 09/19/2011 Requirements pg 293-351 09/21/2011 BCP & DRP pg 357-371 09/26/2011 Telecommunications pg 379-440 09/28/2011 Review
ISSAP 10 two hour sessions 9 effective Figure on covering approximately 60 pages per session – divisions follow Lecture then discussion/questions Final Session will be a review of what has gone before
ISSAP Going to be fast paced & I would suggest reading ahead Will be time at start and end of each session for questions. I can be reached during normal hours at lmco. Outside of normal hours you can e- mail at pp2@6007.us or call 407.352.6027 Questions ?