Presentation is loading. Please wait.

Presentation is loading. Please wait.

Www.issa.org1. 2 Information System Security Association ISSA Buffalo Niagara Introduction to CISSP Study Sessions.

Published byKathlyn Payne Modified over 9 years ago

Similar presentations

Presentation on theme: "Www.issa.org1. 2 Information System Security Association ISSA Buffalo Niagara Introduction to CISSP Study Sessions."— Presentation transcript:

1 www.issa.org1

2 2 Information System Security Association ISSA Buffalo Niagara Introduction to CISSP Study Sessions

3 www.issa.org3 ISSA Overview Information Systems Security Association (ISSA) is the largest international, not-for- profit association specifically for security professionals. The association and chapter provide educational forums, publications and peer interaction opportunities that enhance the knowledge, skill and professional growth of their members.

4 www.issa.org4 ISSA Buffalo Niagara History and Background First meeting April 11, 2003 25 dues paying members and growing Not yet officially recognized as chapter, but acting like one anyway Six months of regular meetings Already held first full day event, 2 more scheduled

5 www.issa.org5 Introductions Name Organization Why achieving the CISSP certification is important to you

6 www.issa.org6 CISSP Study Group Study the Common Body of Knowledge (CBK) domains Review for Exam Achieve certification through testing

7 www.issa.org7 Questions?

8 www.issa.org8 Overview of ISC 2, CISSP Certification was discussed for many years among computer security practitioner Certification was viewed as the way to upgrade the profession. Certification would enhance the credibility of the computer security profession. Creation of the International Information Systems Security Certification Consortium, or (ISC)2, was established in mid-1989

9 www.issa.org9 Overview (continued) ISC2 as an independent, nonprofit corporation whose sole charter is to develop and administer a certification program for information security practitioners. Now firmly established in North America, the program is quickly gaining international acceptance. The Certified Information Systems Security Professional (CISSP) designation is a highly respected certification.

10 www.issa.org10 Overview (continued) CISSP Certification was designed to recognize mastery of an international standard for information security and understanding of a Common Body of Knowledge (CBK). It demonstrates the ability to understand a broad range of security issues in many areas. CISSP examination consists of 250 multiple-choice questions, each having four possible answers (only one of the answers is most correct).

11 www.issa.org11 Overview (continued) Candidates have up to six-hours to complete the examination. The level of knowledge required in order to pass the exam is high. Pass rates are higher for those that attend a CBK review seminar compared to those that study on their own

12 www.issa.org12 Questions?

13 www.issa.org13 Exam Content The CBK domains / outline Not arranged into CBK sequence Not specific to vendor or platform

14 www.issa.org14 Exam Content (cont) CBK Domains: 1.Access Control Systems and Methodology 2.Telecommunications and Networking Security 3.Security Management Practices 4.Application and Systems Development Security 5.Cryptography 6.Security Architecture and Models 7.Operations Security 8.Business Continuity and Disaster Recovery Planning 9.Law, Investigation and Ethics 10.Physical Security

15 www.issa.org15 FAQ 1 How is the CISSP examination structured? The CISSP exam is a 250 question English language examination. Candidates are given 6 hours to complete the exam although most complete it in about 4 hours.

16 www.issa.org16 FAQ 2 What are the questions like? All test questions are multiple choice with four possible answers. They are designed to test a candidate's knowledge of information security facts and concepts and their application.

17 www.issa.org17 FAQ 3 How hard is the examination? The examination tests the expected knowledge a 3-5 year practitioner should have. It is designed to test for the minimum level of competency acceptable for someone to be certified as an information systems security professional. A knowledgeable candidate should not find the examination difficult.

18 www.issa.org18 FAQ 4 If the examination isn't particularly difficult, why don't more people pass it? What makes the examination difficult is the expansive knowledge base it covers. It's difficult to develop expertise in all ten domains.

19 www.issa.org19 FAQ 5 Are the questions in the Study Guide really representative of examination questions? The study guide questions are good examples of the format and type of questions you would see on the exam but are not necessarily representative of the difficulty.

20 www.issa.org20 FAQ 6 Which domains are the hardest? The domains that you have the least experience with. For many people these are often cryptography, system architecture, and physical security – these usually score the lowest.

21 www.issa.org21 FAQ 7 Are there questions on NT or UNIX? The CISSP examination is not vendor or commercial product specific. There are questions on the security models and methodologies used by these systems but only security products that are commonly used and freely available (i.e., SATAN) are acceptable for examination questions.

22 www.issa.org22 FAQ 8 What's the passing score? There is no fixed passing score for the examination. The cut score for each examination is calculated by equating the scoring values associated with each question. Passing rates estimated to be in the 70% to 80% range. Less than 8% of those tested achieve scores higher than 85%.

23 www.issa.org23 FAQ 9 How detailed are the questions, what depth of knowledge is being tested? The CISSP examination is designed to evaluate the ability of a security manager, engineer or architect to properly evaluate, select, deploy and assess security measures. A candidate should have a detailed enough knowledge of security designs, measures, vulnerabilities, etc. to successfully accomplish these tasks.

24 www.issa.org24 Web Sites International Information Systems Security Certification Consortium (ISC)2 http://www.isc2.org/ The CISSP Open Study Guide http://www.cccure.org/ Web portal for the CISSP http://www.cissp.com The SANS (System Administration, Networking, and Security) Institute http://www.sans.org/newlook/home.php

25 www.issa.org25 Books CISSP All-in-One Certification Exam Guide –Shon Harris / McGraw Hill SRV-Publications: CISSP Exam Study and Practice Books –https://www.srvbooks.com/https://www.srvbooks.com/

26 www.issa.org26 Books (cont) Information Security Management Handbook (multiple editions, volumes) –Editors: Micki Krause, Harold F. Tipton Advanced CISSP Prep Guide: Exam Q&A - Ronald L. Krutz, Russell Dean Vines

27 www.issa.org27 Questions?

28 www.issa.org28 Logistics – Times Time? –6:00 –6:30 –7:00 Duration? –1 hour –1.5 hours –As long as needed

29 www.issa.org29 Logistics - Dates Consider –December 22 –December 29

30 www.issa.org30 ISSA Buffalo Niagara Chapter Activities ISSA Buffalo Niagara Chapter Activities Monthly meetings - Presentations based on chapter members needs Workshops - HIPAA was in early August - Network Attacks and Countermeasures – Th. Oct 30 - Digital Forensics – Th. Nov 20 - All based on members needs via member survey – Rotate management and technical subjects Certification Test Prep - Starting today!

31 www.issa.org31 ISSA Buffalo Niagara www.issabuffaloniagara.org

32

Download ppt "Www.issa.org1. 2 Information System Security Association ISSA Buffalo Niagara Introduction to CISSP Study Sessions."

Similar presentations

Reasons to Become CISSP Certified Keith A. Watson, CISSP CERIAS.

Reasons to Become CISSP Certified Keith A. Watson, CISSP CERIAS.
New Privacy and Security Certifications Fifth Annual HIPAA Summit Baltimore, MD October 30, 2002.

New Privacy and Security Certifications Fifth Annual HIPAA Summit Baltimore, MD October 30, 2002.
Security and Personnel

Security and Personnel
© 2013 The McGraw-Hill Companies, Inc. All rights reserved Mike Meyers’ CompTIA A+ ® Guide to 801: Managing and Troubleshooting PCs Fourth Edition (Exam.

© 2013 The McGraw-Hill Companies, Inc. All rights reserved Mike Meyers’ CompTIA A+ ® Guide to 801: Managing and Troubleshooting PCs Fourth Edition (Exam.
SFO ® Certification Program Copyright 2015 ASBO International.

SFO ® Certification Program Copyright 2015 ASBO International.
Practice for the CISSP Exam Steve Santy, MBA, CISSP IT Security Project Manager IT Networks and Security.

Practice for the CISSP Exam Steve Santy, MBA, CISSP IT Security Project Manager IT Networks and Security.
The Prevention Specialist Certification Board of Washington.

The Prevention Specialist Certification Board of Washington.
CSI Certification Presented to the Louisville Chapter of CSI November 13, 2014 Edmund L Brown, CSI, CCCA, Assoc. AIA Project Architect, Sebree Architects.

CSI Certification Presented to the Louisville Chapter of CSI November 13, 2014 Edmund L Brown, CSI, CCCA, Assoc. AIA Project Architect, Sebree Architects.
CIT 694 Introduction. CISSP Certified Information Systems Security Professional “The credential for professionals who develop policies and procedures.

CIT 694 Introduction. CISSP Certified Information Systems Security Professional “The credential for professionals who develop policies and procedures.
CBAP and BABOK Presented to the Albany Capital District Chapter of the IIBA February 3, 2009.

CBAP and BABOK Presented to the Albany Capital District Chapter of the IIBA February 3, 2009.
Security Certification

Security Certification
The CMA Program IMA St. Louis Chapter March 9th, 2010.

The CMA Program IMA St. Louis Chapter March 9th, 2010.
IT Project Management, Third Edition Appendix B1 Appendix B: Advice for the Project Management Professional (PMP) Exam and Related Certifications.

IT Project Management, Third Edition Appendix B1 Appendix B: Advice for the Project Management Professional (PMP) Exam and Related Certifications.
Copyright Course Technology 2001 1 Appendix B: Advice for the PMP Exam and Related Certifications.

Copyright Course Technology Appendix B: Advice for the PMP Exam and Related Certifications.
CALIFORNIA CERTIFIED LEGAL SECRETARY Legal Secretaries, Incorporated Legal Secretaries, Incorporated © July 2014 All Rights Reserved.

CALIFORNIA CERTIFIED LEGAL SECRETARY Legal Secretaries, Incorporated Legal Secretaries, Incorporated © July 2014 All Rights Reserved.
What is CISSP Anyway? A Presentation by: George L. McMullin II, CISSP COO, CorpNet Security, Inc. Executive Director, NEbraskaCERT.

What is CISSP Anyway? A Presentation by: George L. McMullin II, CISSP COO, CorpNet Security, Inc. Executive Director, NEbraskaCERT.
Certified Information System Security Professional (CISSP)

Certified Information System Security Professional (CISSP)
ASHRAE Certification Programs  Created to fill an identified industry need through market research  Based on best practices  Developed by ASHRAE-identified.

ASHRAE Certification Programs  Created to fill an identified industry need through market research  Based on best practices  Developed by ASHRAE-identified.
GET CERTIFIED. GET NOTICED. 2011 HR CERTIFICATION EXAMS OVERVIEW Name of Presenter: Title: Company: Note: There is no recertification credit awarded for.

GET CERTIFIED. GET NOTICED HR CERTIFICATION EXAMS OVERVIEW Name of Presenter: Title: Company: Note: There is no recertification credit awarded for.
Project Management and overview 1 Advanced Project Management- Introduction Ghazala Amin.

Project Management and overview 1 Advanced Project Management- Introduction Ghazala Amin.

Similar presentations

Ads by Google