Certified in Cybersecurity

Introduction

• CC Certification
• Taking the CC Exam
• Computer-Based Testing Environment
• Exam Retake Policy
• Recertification Requirements

Confidentiality, Integrity, Availability, and Non-repudiation:

• Understand the Security Concepts of Information Assurance
• The CIA Triad
• Non-Repudiation

Authentication and Authorization

• Understand the Security Concepts of Information Assurance
• Access Control Process
• Password Policies
• Authentication Factors

Privacy

• Understand the Security Concepts of Information Assurance
• Privacy
• Privacy Management Framework

Risk Management

• Understand the Risk Management Process
• Risk Types
• Risk Identification and Assessment
• Risk Treatment Strategies
• Risk Profile and Tolerance

Security Controls

• Understand Security Controls
• What are Security Controls?
• Categorizing Security Controls

Ethics

• Understand ISC2 Code of Ethics
• Corporate Ethics Codes
• ISC2 Code of Ethics
• Ethics Complaint Procedure

Security Governance Processes

• Understand Governance Processes
• Security Policies and Procedures
• Laws and Regulations

Business Continuity

• Understand Business Continuity (BC)
• Business Continuity Planning
• Business Continuity Controls
• High Availability and Fault Tolerance

Disaster Recovery

• Understand Disaster Recovery (DR)
• Disaster Recovery Planning
• Backups
• Disaster Recovery Sites
• Testing Disaster Recovery Plans

Incident Response

• Understand Incident Response
• Creating an Incident Response Program
• Building an Incident Response Team
• Incident Communications Plan
• Incident Identification and Response

Physical Access Controls

• Understand Physical Access Controls
• Physical Facilities
• Designing for Security
• Visitor Management
• Physical Security Personnel

 Logical Access Controls

• Understand Logical Access Controls
• Authorization
• Account Types
• Non-Repudiation

Computer Networking

• Understand Computer Networking
• Network Types
• TCP/IP Networking
• IP Addressing
• Network Ports and Applications
• Securing Wi-Fi Networks

Network Threats and Attacks

• Understand Network Threats and Attacks
• Malware
• Eavesdropping Attacks
• Denial-of-Service Attacks
• Side-Channel Attacks

Threat Identification and Prevention

• Understand Network Threats and Attacks
• Antivirus Software
• Intrusion Detection and Prevention
• Firewalls
• Vulnerability Scanning

Network Security Infrastructure

• Understand Network Security Infrastructure
• Data Center Protection
• Network Security Zones
• Switches, WAPs, and Routers
• Network Segmentation
• Virtual Private Networks
• Network Access Control
• Internet of Things

Cloud Computing

• Understand Network Security Infrastructure
• Cloud Computing
• Cloud Deployment Models
• Cloud Service Categories
• Security and the Shared Responsibility Model
• Automation and Orchestration
• Vendor Relationships

Encryption

• Understand Data Security
• Cryptography
• Encryption Algorithms
• Uses of Encryption
• Hash Functions

Data Handling

• Understand Data Security
• Data Life Cycle
• Data Classification

Logging and Monitoring

• Understand Data Security
• Logging
• Log Monitoring

Configuration Management

• Understand System Hardening
• Configuration Management
• Configuration Vulnerabilities

Best Practice Security Policies

• Understand Best Practice Security Policies
• Acceptable Use Policy
• Data Handling Policy
• Password Policy
• Bring Your Own Device Policy
• Privacy Policy
• Change Management Policy

Security Awareness Training

• Understand Security Awareness Training
• Social Engineering
• Security Education

Practice Test

Flashcard