SSCP Domain : Security Operations and Administration Part 2

Target Audience
Expected Duration
Lesson Objectives
Course Number

Information is often at the core of business, and maintaining the security of that information in the digital age is of utmost importance. This course provides the learner with the skills needed to identify and organize essential information in an organization, and how to document and implement policies, standards, procedures and guidelines. These skills will ensure confidentiality, integrity and availability of core business information. This course examines the secure storage of data as well as encryption, retention, sanitization and disposal of data. It teaches the learner the fundamentals of secure application development and demonstrates common web vulnerabilities. This course guides you through the Common Body of Knowledge (CBK) recommended by the International Information Systems Security Certification Consortium (ISC)2 for its Systems Security Certified Practitioner (SSCP) certification. The SSCP credential certifies student expertise in 7 different knowledge domains and covers the most recent key areas of knowledge as outlined in the Candidate Information Bulletin (CIB) effective date: February 1, 2012.

Target Audience
Experienced IT professionals with a basic knowledge of network and communications protocols and equipment seeking to pass the System Security Certified Practitioner (SSCP) exam, or otherwise gain knowledge in assessing, planning, implementing and managing IT security in an enterprise environment. A minimum of one year's professional experience in one of the seven SSCP CBK Domains is required for certification.

Expected Duration (hours)

Lesson Objectives

SSCP Domain : Security Operations and Administration Part 2

  • describe the key methods for maintaining confidential information security
  • recognize appropriate techniques for restricting sensitive data access
  • identify key management policy considerations
  • propose appropriate techniques for destroying magnetic media
  • identify key considerations for handling sensitive data
  • describe the functions of a data leakage prevention strategy
  • describe common methodologies for deploying software applications
  • recognize the most commonly exploited vulnerabilities of web applications
  • describe how to implement guidelines for protecting against web vulnerabilities
  • assess the data and information security program for a particular scenario
  • optimize the application development process for a particular scenario
  • Course Number: