Information Systems Security Engineering Professional Certification (ISSEP)

ISSEP COURSE CURRICULUM

Developed and maintained under a joint agreement between the International Information Systems Security Certification Consortium (ISC)2 and the U. S. National Security Agency, Information Assurance Directorate (NSA/IAD), ISSEP is a master-level, vendor-neutral certification that recognizes mastery of an international standard for information security and understanding of a Common Body of Knowledge (CBK). After studying the course for ISSEP certification, you'll have the ability to manage, operate, develop and plan an effective network security infrastructure.

To be considered for ISSEP certification, candidates must satisfy the following prerequisites:

Candidates must be a CISSP in good standing* to sit for one or more of the concentration examinations. The term concentration exam refers to the class of (ISC) examinations (ISSEP, ISSMP and ISSAP) designed to work in tandem with the CISSP credential. A concentration designation demonstrates that a CISSP has proven capabilities and subject-matter expertise beyond that required for the CISSP credential.

Systems Security Engineering

Overview/Description
To define the Systems Security Engineering domain of the ISSEP process

Target Audience
Candidates who plan to take the International Information System Security Certification Consortium's (ISC)2 Information Systems Security Engineering Professional (ISSEP) certification or IT professionals who want to learn about the standards and regulations pertaining to systems engineering, certification and accreditation, information assurance, and technical management

Prerequisites
Experience in selecting, recommending, and implementing information system security policies, standards, procedures, and technologies

Expected Duration
2.75 Hours

Systems Security Engineering

Identify the four domains that are required to cover the Common Body of Knowledge for ISSEP certification
Recognize the components of the SE and ISSE processes
Recognize the activities that comprise the ISSE process
Identify the function and procedures of the PNE process
Identify SE and ISSE activities
Define Certification and Accreditation and its relationship to SE and ISSE
Recognize the concepts and elements of Defense-in-depth
Recognize the elements of risk management
Identify risk assessment activities

Certification and Accreditation

Overview/Description
To define ISSE certification and accreditation

Target Audience
Candidates who plan to take the International Information System Security Certification Consortium's (ISC)2 Information Systems Security Engineering Professional (ISSEP) certification or IT professionals who want to learn about the standards and regulations pertaining to systems engineering, certification and accreditation, information assurance, and technical management

Prerequisites
Experience in selecting, recommending, and implementing information system security policies, standards, procedures, and technologies

Expected Duration
1.75 Hours

Certification and Accreditation

Recognize the components of the C&A process
Identify C&A requirements
Identify the activities within each phase of the DITSCAP process
Identify the phases of the NIACAP and FIPS 102 processes
Identify various C&A processes

Technical Management

Overview/Description
To provide an overview of technical management

Target Audience
Candidates who plan to take the International Information System Security Certification Consortium's (ISC)2 Information Systems Security Engineering Professional (ISSEP) certification or IT professionals who want to learn about the standards and regulations pertaining to systems engineering, certification and accreditation, information assurance, and technical management

Prerequisites
Experience in selecting, recommending, and implementing information system security policies, standards, procedures, and technologies

Expected Duration
1.25 Hours

Technical Management

Recognize the fundamentals of project planning
Identify the features of different systems development process models
Identify the tasks and models associated with planning and managing technical effort
Identify technical management practices

US Government Information Assurance Regulations

Overview/Description
To outline US government IA regulations

Target Audience
Candidates who plan to take the International Information System Security Certification Consortium's (ISC)2 Information Systems Security Engineering Professional (ISSEP) certification or IT professionals who want to learn about the standards and regulations pertaining to systems engineering, certification and accreditation, information assurance, and technical management

Prerequisites
Experience in selecting, recommending, and implementing information system security policies, standards, procedures, and technologies

Expected Duration
2.25 Hours

US Government Information Assurance Regulations

Define the role of the various bodies involved in Information Assurance regulations
Identify the role of the CNSS and its issuances
Identify the purpose of NIST documents
Identify CNSS issuances and NIST publications
Identify the regulations governing civil agencies
Identify DoD regulations
Identify civil agency and defense policies