Information System Security培训课程

CISSP是一家信息保障专业人员，负责定义确保业务环境安全的架构，设计，管理和/或控制。广泛的知识和通过考试所需的经验是CISSP与众不同的原因。该证书展示了（ISC）2®CBK®提供的全球公认能力水平，涵盖了当今安全领域的关键主题，包括云计算，移动安全，应用程序开发安全，风险管理等。

本课程可帮助您查看信息安全实践的10个领域。它还是一个强大的学习工具，用于掌握与信息系统安全的各个方面相关的概念和主题。

目标：

- 回顾CISSP CBK（共同知识体系）的主要议题。
- 准备CISSP考试

概述：

认证信息系统安全专业认证被认为是在信息安全，审计和IT治理管理方面发展高级职业的关键资格。由全球30,000多名合格专业人士组成的认证信息系统安全专业人员资格证明了经过验证的知识，并且是包括CISO，CSO和高级安全经理在内的更高收入潜力的关键。

您将学习：

- 使用以对您的组织有益的实用方式获得的知识
- 使用访问控制技术保护您的组织资产，并加强密码学领域的机密性和完整性控制
- 保护您的网络架构和设计（实施网络安全）
- 实现组织目标，例如法律与合规性，信息保障，安全性和数据治理
- 通过安全操作，架构和设计原则增强IT服务的安全交付
- 通过Business连续性计划实施业务弹性
- 您将深入了解（ISC）2®规定的8个域。

主要Go ：

- 第一次通过CISSP考试。

目标观众：

此培训适用于准备CISSP认证考试的个人。

一个全面，实用的5天课程，旨在提供管理信息安全，信息保障或基于信息风险的流程所需的知识和技能。 CISMP课程与最新的国家信息保障框架（IAMM）以及ISO / IEC 27002和27001保持一致;信息安全的行为准则和标准。本课程是CESG认证培训（CCT）课程。

该课程遵循最新的BCS课程大纲，并为代表们准备2小时多项选择BCS考试，该考试在课程最后一天的下午进行。

该资格证书为代表们提供了有关信息安全的概念的详细知识; （保密性，完整性，可用性，漏洞，威胁，风险和对策），以及对影响信息安全管理的现行立法和法规的理解。获奖者将能够应用整个课程中涵盖的实践原则，确保正常的业务流程变得健壮和安全。

Description:

CISA® is the world-renowned and most popular certification for professionals working in the field of IS audit and IT risk consulting.

Our CISA course is an intense, very competitive and exam focused training course. With experience of delivering more than 150+ CISA trainings in Europe and around the world and training more than 1200+ CISA delegates, the Net Security CISA training material has been developed in house with the top priority of ensuring CISA delegates pass the ISACA CISA® Exam. The training methodology focuses on understanding the CISA IS auditing concepts and practicing large number of ISACA released question banks from the last three years. Over a period, CISA holders have been in huge demand with renowned accountings firms, global banks, advisory, assurance, and internal audit departments.

Delegates may have years of experience in IT auditing but perspective towards solving CISA questionnaires will solely depend on their understanding to globally accepted IT assurance practices. CISA exam is very challenging because the chance of a very tight clash between two possible answers exists and that is where ISACA tests you on your understanding in global IT auditing practices. To address these exam challenges, we always provide the best trainers who have extensive experience in delivering CISA training around the world.

The Net Security CISA manual covers all exam-relevant concepts, case studies, Q&A's across CISA five domains. Further, the Trainer shares the key CISA supporting material like relevant CISA notes, question banks, CISA glossary, videos, revision documents, exam tips, and CISA mind maps during the course.

Goal:

The ultimate goal is to pass your CISA examination first time.

Objectives:

- Use the knowledge gained in a practical manner beneficial to your organisation
- Provide audit services in accordance with IT audit standards
- Provide assurance on leadership and organizational structure and processes
- Provide assurance on acquisition/ development, testing and implementation of IT assets
- Provide assurance on IT operations including service operations and third party
- Provide assurance on organization’s security policies, standards, procedures, and controls to ensure confidentiality, integrity, and availability of information assets.

Target Audience:

Finance/CPA professionals, I.T. professionals, Internal & External auditors, Information security, and risk consulting professionals.

该培训面向计划实施基于MS Windows Server 2012 R2的公钥基础结构并计划使用合格电子签名证书的所有操作系统管理员。

培训参与者将了解与实施公钥基础设施相关的基本问题，以及使用最新加密解决方案保护信息系统的想法。

基于MS Windows Server 2012 R2的操作系统，讨论了使用认证服务满足企业需求的可能性。在虚拟环境中进行培训期间，将安装完整的认证中心，并讨论与Active Directory域中的公钥基础结构的管理和管理相关的最重要问题。

该培训还包括有关波兰认证中心根据“电子签名法”使用电子签名的理论和实践知识。讨论了法律问题，法定要求以及在波兰使用电子签名证书的例子。

培训参与者将获得创建与公共行政办公室通信相关的电子通信所需的知识，以及使用能够或要求使用此类身份识别的其他服务。

本课程将根据ISO 27005为您提供建立信息安全的技能，ISO 27005致力于基于ISO 27001的信息安全风险管理。

本课程将帮助与会者扫描，测试，破解和保护自己的系统。获得当前基本安全系统的深入知识和实践经验。与会者将了解外围防御如何工作，然后被引导扫描和攻击他们自己的网络，没有真正的网络受到伤害。然后，与会者将了解入侵者如何升级权限以及可以采取哪些步骤来保护系统，入侵检测，策略创建，社交工程，DDoS攻击，缓冲区溢出和病毒创建。

This is a one day Introduction to ISO27001

数字身份是指计算机系统用于验证用户身份的信息。与数字身份相关的一些问题包括电子签名，访问控制和欺诈检测。

这种以讲师为主导的现场培训（现场或远程）是针对希望建立端到端数字身份管理系统的电信公司的工程师。

在培训结束时，参与者将能够：

- 理解，评估和采用不同的方法来管理用户名和密码。
- 设置一个适用于电信环境中所有应用程序的登录系统。
- 使用身份识别技术可以清楚地了解客户及其需求。
- 实现适用于不同平台（笔记本电脑，移动设备等）的身份验证系统。

课程格式

- 互动讲座和讨论。
- 大量的练习和练习。
- 在实时实验室环境中亲自实施。

课程自定义选项

- 要申请本课程的定制培训，请联系我们安排。

This instructor-led, live training in 中国 (online or onsite) is aimed at security engineers who wish to use IBM Qradar SIEM to address pressing security use cases.

By the end of this training, participants will be able to:

- Gain visibility into enterprise data across on-premise and cloud environments.
- Automate security intelligence to hunt threats and to contain risks.
- Detect, identify, and prioritize threats.

This instructor-led, live training in 中国 (online or onsite) is aimed at engineers who wish to learn the methods and tools needed to protect their organization's information systems against attack.

By the end of this training, participants will be able to:

- Understand information security at both the computer level, as well as the communications level.
- Prevent physical and digital access to private information systems.
- Prevent the modification of information that is stored, being processed, or being transmitted.
- Protect against denial of service to authorized users.
- Take the necessary measures to detect, document, and counter security threats.
- Ensure that organizational information is kept confidential.

The training takes the form of a workshop supplemented with substantive knowledge. Classes are based on the official CISA certificate framework. During the workshop, case studies will be discussed in discussing specific issues. Classes will be conducted in English (on request in Polish) based on the ISACA handbook in English.
An exam voucher of US $ 760 is included in the training. (ISACA Member: US $575).

CISA Exam Material Scope:

- Information System Auditing Process (21%)
- Governance and Management of IT (17%)
- Information Systems Acquisition, Development and implementation (12%)
- Information Systems Operation and Business Resilience (23%)
- Protection of Information Assets (27%)

Duration of the exam: 4 hours
Type: multiple choice test
Volume: 200 questions

List of the requirements that you must meet in order to be able to claim the CISA qualification:

- Pass the CISA exam. The CISA passing score is a mark of 450 or higher on the exam.
- Abide by the ISACA Code of Professional Ethics
- Promise to obey the CISA Continuing Professional Education Policy
- Gain at least 5 years of professional information systems auditing, control or security work experience.
- Comply with Information Systems Auditing Standards

If you’ve passed the exam and believe that you meet those requirements, then you can begin the application for certification: [here](https://www.isaca.org/credentialing/cisa/get-cisa-certified)
There is a fee of $50 for this application, and it can be paid: [on this link](http://www.isaca.org/cisapay)

There’s also a yearly fee that you must pay to maintain this certification after you’ve been granted it. The fee is $40 per annum for ISACA members, and $75 for non-members.