Overview/Description
To understand different threats to the enterprise environment and recognize different ways of increasing the security of application development; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2's CISSP certification exam
Target Audience
Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers
Prerequisites
A minimum of four years of professional experience in the information security field or three years plus a college degree
CISSP: Application Security (replaced by course sp_cssp_a02_it_enus)
distinguish between open and closed source code and recognize the functionality of different program types.
distinguish between the types of attacks used in the enterprise environment and identify the appropriate methods to counteract them.
recognize the different types of malicious code that can affect a system or network and identify the methods that can be used to mitigate them.
identify the type of attack being perpetrated in a given scenario and determine the appropriate steps to counteract it.
recognize the characteristics of various knowledge-based systems and identify the activities involved in the different phases of the information systems development life cycle.
distinguish between various database models and technologies, and define basic concepts associated with databases and data warehousing.
select the appropriate database model for a given set of criteria.