Objectives and Review of ISSEP Domains

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
5 hours 58 minutes
Difficulty
Intermediate
CEU/CPE
6
Video Transcription
00:00
>> Welcome back to Cybrary ISSEP course,
00:00
I'm your instructor, Brad Rhodes.
00:00
We have made it all the way through
00:00
on our journey to our final module.
00:00
This is Module 10 of 10,
00:00
and we're going to talk about concentration insights,
00:00
things you should know to get ready for the ISSEP exam.
00:00
Think of this as your final study guide.
00:00
we have made a long journey.
00:00
We started at the very beginning.
00:00
We worked through each of
00:00
the ISSEP domains which we're going to review again,
00:00
we've talked about the ISSE process,
00:00
we talked about the system development life cycle.
00:00
We got through key NIST standards and we are here.
00:00
Once you get through this, you're going to get
00:00
that awesome certificate of completion,
00:00
which probably could count as CEUs are
00:00
CVEs for here other certifications as you hold them.
00:00
But this is a great accomplishment
00:00
to get through all of this material.
00:00
If you have gathered anything along the way,
00:00
then the ISSEP concentration
00:00
associated with the CISSP is pretty complex.
00:00
There's a lot of things you need
00:00
to know because you never
00:00
know where the questions are going
00:00
to come from on the exam.
00:00
Let's jump in to our first lesson.
00:00
In this video, we're going to look at
00:00
our module objectives and we're going to review
00:00
the ISSEP domains again so they're fresh in your mind
00:00
as we talk through what's in this particular module.
00:00
Pretty straight forward, we're going to talk
00:00
about documents you need to know,
00:00
documents you need to go through at least once,
00:00
skim through whatever the case may be.
00:00
We're going to talk about the SSE,
00:00
the System Security Engineering
00:00
Capability Maturity Model.
00:00
This is a new concept.
00:00
It's been around for a while, but it
00:00
is something you should be familiar with.
00:00
We're going to link SE processes to the SDLC.
00:00
Again, something you might want
00:00
to be well familiar with for the exam,
00:00
and then we're going to provide
00:00
some insights in how you prepare for the ISSEP exam.
00:00
Remember, there are five domains in
00:00
the information system
00:00
security engineering professional concentration exam.
00:00
There's the system security engineering
00:00
foundations, that's the basics.
00:00
There's risk management, but this is not
00:00
just your risk management from CISSP.
00:00
This is in depth where we look at the three levels,
00:00
where we look at the organization,
00:00
we look at mission business process,
00:00
we look at system owners,
00:00
and the systems level,
00:00
we get into security planning and design.
00:00
That's how do we design a secure system?
00:00
We look at implementation, verification,
00:00
and validation, do we meet requirements,
00:00
do we meet mission needs?
00:00
Are we satisfying the customer?
00:00
Obviously, in that area,
00:00
they're very much akin to what we
00:00
tie back to our development processes.
00:00
Then of course, we've talked about secure ops,
00:00
change management and disposal,
00:00
which are all ultimately especially change management.
00:00
That's cyclical process that we have to follow to ensure
00:00
our systems remain secure
00:00
throughout their entire life cycle.
00:00
In this video, we looked at our module objectives and
00:00
we've reviewed the ISSEP domains
00:00
, will see you next time.
Up Next