iZone Learning Centre

Learning Centre

Formação

Parcerias

Pré-inscrição

Bolsa de Formadores

Plataformas

Pesquisa

Contactos

Certificações Tecnológicas

Certificações Tecnológicas | b-learning solutions

Infrastructure Library (ITIL) V3 e-learning

PMI - Certified Associate in Project Management (CAPM) Exam - PMBOK Guide - Fourth Edition - Aligned- e-learning

PMI - Project Management Professional (PMP) Exam - PMBOK Guide - Fourth Edition - Aligned - e-learning

International Institute of Business Analysis (IIBA)

Linux Professional Institute (LPI)

iZone Learning Centre > Formação > Certificações Tecnológicas > (ISC) 2

(ISC) 2

Certificado profissional de informação de sistemas de segurança (CISSP)

Domínio CISSP: Informação de Segurança e Gestão de Riscos - [243962_ENG]

Descrição

To identify the security requirements associated with identifying and protecting organizational information assets, perform the analysis techniques used in risk management, and recognize the responsibilities associated with different roles in an organization; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2's CISSP certification exam

Público alvo

Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers

Pré-requisitos

A minimum of four years of professional experience in the information security field or three years plus a college degree

Duração esperada (horas): 2.9

Objectivos

CISSP Domain: Information Security and Risk Management

• Recognize the goals of security management and change control.
• Identify the change control mechanisms used to secure the operational environment.
• Recognize the objectives and criteria associated with data classification, and distinguish between information classification roles.
• Distinguish between policies, standards, baselines, and guidelines.
• Recognize best practices and procedures for dealing with different aspects of employee relations.
• Determine the appropriate security procedures for hiring a new employee in a given scenario.
• Identify the principles of risk management, distinguish between planning types, and recognize what's involved in the analysis of different threats and vulnerabilities.
• Calculate the potential loss expectancy and the cost of countermeasures used for risk reduction in a given scenario.
• Calculate the loss expectancy associated with an information asset, perform a cost-benefit analysis, and determine how to handle the risk depending on the outcome of the countermeasure.
• Identify the security-related responsibilities associated with different roles within an organization.

Número do curso: 243962_eng

Domínio CISSP: Arquitectura e Design de Segurança - [243975_ENG]

Descrição

To understand the principles of common computer architectures, distinguish between machine types and memory storage types, and recognize the logistics of common security models; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2's CISSP certification exam

Público alvo

Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers

Pré-requisitos

A minimum of four years of professional experience in the information security field or three years plus a college degree

Duração esperada (horas): 2.3

Objectivos

CISSP Domain: Security Architecture and Design

• Recognize the components of the basic information system architecture and their functionality, and differentiate between hardware, software, and firmware.
• Differentiate between machine types and recognize the functions of network protocols and the resource manager.
• Distinguish between types of storage device and how they are used.
• Determine which system resources can be found at the different rings and how the rings control subject access to objects.
• Differentiate between key security concepts, recognize the role of TCB, reference monitor, and security kernel in protecting the operating system, and recognize the two basic access control types.
• Differentiate between the various criteria and standards used to evaluate security in a networking environment.
• Specify the security level that should be assigned to various objects and determine how to implement the standards.
• Recognize the logistics of various security models used to enforce rules and protection mechanisms.

Número do curso: 243975_eng

Domínio CISSP: Controlo de Acesso - [243986_ENG]

Descrição

To introduce access control concepts and methodologies and explain how they're implemented and administered in a centralized or decentralized environment; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2's CISSP certification exam

Público alvo

Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers

Pré-requisitos

A minimum of four years of professional experience in the information security field or three years plus a college degree

Duração esperada (horas): 2.7

Objectivos

CISSP Domain: Access Control

• Identify the types of access control technologies used in a networking environment.
• Identify knowledge-based and characteristics-based authentication technologies.
• Recognize how single sign-on systems (SSOs), one-time passwords (OTPs), and smart cards are used for authentication.
• Determine the appropriate type of authentication to implement in a given enterprise scenario.
• Recognize ways of securing passwords and identify different types of attack against passwords and password files.
• Select the appropriate access control model for a scenario.
• Determine the most appropriate access control model to implement in a given scenario.
• Recognize how different types of access control technique control access to resources, and distinguish between centralized and decentralized access control administration mechanisms.
• Identify information detection system (IDS) mechanisms and implementation methods, and recognize various intrusion detection and prevention techniques.

Número do curso: 243986_eng

Domínio CISSP: Segurança da Aplicação - [243998_ENG]

Descrição

To understand different threats to the enterprise environment and recognize different ways of increasing the security of application development; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2's CISSP certification exam

Público alvo

Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers

Pré-requisitos

A minimum of four years of professional experience in the information security field or three years plus a college degree

Duração esperada (horas): 2.0

Objectivos

CISSP Domain: Application Security

• Distinguish between open and closed source code and recognize the functionality of different program types.
• Distinguish between the types of attacks used in the enterprise environment and identify the appropriate methods to counteract them.
• Recognize the different types of malicious code that can affect a system or network and identify the methods that can be used to mitigate them.
• Identify the type of attack being perpetrated in a given scenario and determine the appropriate steps to counteract it.
• recognize the characteristics of various knowledge-based systems and identify the activities involved in the different phases of the information systems development life cycle.
• Distinguish between various database models and technologies, and define basic concepts associated with databases and data warehousing.
• Select the appropriate database model for a given set of criteria.

Número do curso: 243998_eng

Domínio CISSP: Segurança de Operações - [244020_ENG]

Descrição

To understand the different mechanisms used to identify different types of attack and their effects, and protect system resources, e-mail and Internet communication to ensure operations security; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2's CISSP certification exam

Público alvo

Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers

Pré-requisitos

A minimum of four years of professional experience in the information security field or three years plus a college degree

Duração esperada (horas): 2.3

Objectivos

CISSP Domain: Operations Security

• recognize the activities involved in securing the operations of an enterprise and identify the technologies used to maintain network and resource availability.
• identify the effects of various hardware and software violations on the system, and recognize how different types of operational and life-cycle assurance are used to secure operations.
• determine the effects of different attacks on the network and identify the consequences of those effects.
• recognize how different auditing and monitoring techniques are used to identify and protect against system and network attacks.
• recognize the need for resource protection, distinguish between e-mail protocols, and identify different types of e-mail vulnerability.
• identify basic mechanisms and security issues associated with the Web, and recognize different technologies for transferring and sharing files over the Internet.
• recognize key reconnaissance attack methods and identify different types of administrative management and media storage control.
• identify the appropriate security measures and controls for creating a more secure workspace in given scenarios.

Número do curso: 244020_eng

Domínio CISSP: Criptografia - [244031_ENG]

Descrição

To recognize how different cryptographic technologies are used to provide confidentiality, integrity, and authentication for data being transferred across untrusted networks; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2's CISSP certification exam

Público alvo

Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers

Pré-requisitos

A minimum of four years of professional experience in the information security field or three years plus a college degree

Duração esperada (horas): 2.9

Objectivos

CISSP Domain: Cryptography

• Define key cryptographic terms and distinguish between types of symmetric key algorithms.
• Distinguish between types of asymmetric algorithms.
• Determine the appropriate cryptography implementation for a given scenario.
• Distinguish between types of cipher and identify different categories of cryptanalytic attack.
• Distinguish between the various algorithms used for message authentication.
• Determine the appropriate hashing algorithm to use in a given scenario.
• Recognize how certificate authorities (CAs), digital signatures, and the Public Key Infrastructure (PKI) are used to provide confidentiality, integrity, and authentication.

Número do curso: 244031_eng

Domínio CISSP: Segurança Física (ambiental) - [244059_ENG]

Descrição

To understand the considerations and mechanisms involved in implementing the physical security of an enterprise; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2's CISSP certification exam

Público alvo

Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers

Pré-requisitos

A minimum of four years of professional experience in the information security field or three years plus a college degree

Duração esperada (horas): 2.0

Objectivos

CISSP Domain: Physical (Environmental) Security

• Recognize basic threats to an organization's physical security and identify the security mechanisms used in securing an enterprise environment.
• Identify the security mechanisms and strategies used to protect the perimeter of a facility.
• Identify the appropriate physical security mechanisms to implement in a given scenario.
• Identify the appropriate mechanisms and controls for securing the inside of a building or facility.
• select the most appropriate intrusion detection technology for a scenario.
• Determine the appropriate intrusion detection system to implement, given a specific scenario.
• Select the appropriate strategy for securing compartmentalized areas in a given scenario.

Número do curso: 244059_eng

Domínio CISSP: Telecomunicações e segurança de redes - [244069_ENG]

Descrição

To understand the structures, transmission methods, transport formats, and security technologies used in providing telecommunications and network security; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2's CISSP certification exam

Público alvo

Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers

Pré-requisitos

A minimum of four years of professional experience in the information security field or three years plus a college degree

Duração esperada (horas): 3.7

Objectivos

CISSP Domain: Telecommunications and Network Security

• Identify security issues associated with e-mail, facsimile, and PBX systems, and recognize how the LPC algorithm is used to secure voice communications.
• Identify the characteristics and functionality of the different technologies used to protect an organization at the network edge.
• Identify the characteristics of TCP and IP, and recognize the functionality of the OSI reference model.
• Distinguish between the layers of the OSI reference model and their associated functionality and technologies.
• Distinguish between types of data topology and physical media, and recognize the functionality of different LAN technologies.
• Recognize the network topologies, media access methods, data transmission types, and devices used by LANs and WANs.
• Identify the characteristics of the switching, remote access, and authentication methods used by LANs and WANs, and recognize the functionality of Ethernet and Token Ring technologies.
• Recognize the characteristics of the various network communications mechanisms and technologies used in an enterprise environment, and identify the protocols used by VPNs.
• Recognize the characteristics and functionality of the protocols used to secure data in transit in an enterprise environment.
• Recognize how different transport layer mechanisms secure network data.
• Recognize how different technologies are used to protect data at the Application layer.
• Determine the most appropriate methods and mechanisms for securing information at the Application layer, given a scenario.

Número do curso: 244069_eng

Domínio CISSP: Continuidade de Negócios e Planeamento para a recuperação de desastres - [244085_ENG]

Descrição

To recognize how to plan for business continuity and disaster recovery in the event of unforeseen and critical loss; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2's CISSP certification exam

Público alvo

Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers

Pré-requisitos

A minimum of four years of professional experience in the information security field or three years plus a college degree

Duração esperada (horas): 2.3

Objectivos

CISSP Domain: Business Continuity and Disaster Recovery Planning

• Recognize the phases involved in creating a business continuity plan (BCP).
• Recognize what's involved in the project initiation and management phase of the business continuity planning process.
• Identify the steps for conducting a business impact analysis (BIA) in a given scenario.
• Determine the appropriate strategy for performing a business impact analysis (BIA) in a given scenario.
• Identify the appropriate strategies for recovering critical business systems and resources, and maintaining business continuity in the event of a disaster.
• Identify the factors that need to be reviewed and documented in a business continuity plan, given a scenario.
• Identify the objectives and functions associated with testing and maintaining a business continuity plan.
• Determine the appropriate strategy for designing a business continuity plan (BCP) in a given scenario.

Número do curso: 244085_eng

Domínio CISSP: Legalidade, Regulamentos, Cumprimentos e Investigações - [244096_ENG]

Descrição

To identify the types and characteristics of computer crime, distinguish between the laws relating to information technology, and recognize the investigative and ethical considerations involved in dealing with computer crime; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2's CISSP certification exam

Público alvo

Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers

Pré-requisitos

A minimum of four years of professional experience in the information security field or three years plus a college degree

Duração esperada (horas): 2.2

Objectivos

CISSP Domain: Legal, Regulations, Compliance and Investigations

• Distinguish between the major categories of computer crime and recognize examples of them.
• Recognize the characteristics of various computer-related crimes and identify the type of intellectual property law that applies in a given scenario.
• Determine the type of intellectual property that should be put in place in a given scenario.
• Recognize the characteristics of various law systems and categories of law, and identify laws related to information security and privacy.
• Distinguish between the laws that have been created to deal with different types of computer crime.
• Recognize the definition of the principles of due care and due diligence, and identify the phases and types of evidence involved in computer crime.
• Determine the appropriate process for controlling evidence when investigating a computer-related crime in a given scenario.
• Recognize the investigative and ethical considerations involved in dealing with computer crime.

Número do curso: 244096_eng

Engenharia Profissional de Sistemas de Informação de Segurança (ISSEP)

Engenharia de Sistemas de Segurança - [206760_ENG]

Descrição

To define the Systems Security Engineering domain of the ISSEP process

Público alvo

Candidates who plan to take the International Information System Security Certification Consortium's (ISC)2 Information Systems Security Engineering Professional (ISSEP) certification or IT professionals who want to learn about the standards and regulations pertaining to systems engineering, certification and accreditation, information assurance, and technical management

Pré-requisitos

Experience in selecting, recommending, and implementing information system security policies, standards, procedures, and technologies

Duração esperada (horas): 2.7

Objectivos

Systems Security Engineering

• Identify the four domains that are required to cover the Common Body of Knowledge for ISSEP certification.
• Recognize the components of the SE and ISSE processes.
• Recognize the activities that comprise the ISSE process.
• Identify the function and procedures of the PNE process.
• Identify SE and ISSE activities.
• Define Certification and Accreditation and its relationship to SE and ISSE.
• Recognize the concepts and elements of Defense-in-depth.
• Recognize the elements of risk management.
• Identify risk assessment activities.

Número do curso: 206760_eng

Certificação e Acreditação - [206761_ENG

Descrição

To define ISSE certification and accreditation

Público alvo

Pré-requisitos

Experience in selecting, recommending, and implementing information system security policies, standards, procedures, and technologies

Expected Duration (hours): 1.7

Lesson Objectives

Certification and Accreditation

• Recognize the components of the C&A process.
• Identify C&A requirements.
• Identify the activities within each phase of the DITSCAP process.
• Identify the phases of the NIACAP and FIPS 102 processes.
• Identify various C&A processes.

Número do curso: 206761_eng

Gestão Técnica - [206762_ENG]

Descrição

To provide an overview of technical management

Público alvo

Pré-requisitos

Experience in selecting, recommending, and

implementing information system security policies, standards, procedures, and technologies

Duração esperada (horas): 1.3

Objectivos

Technical Management

• Recognize the fundamentals of project planning.
• Identify the features of different systems development process models.
• Identify the tasks and models associated with planning and managing technical effort.
• Identify technical management practices.

Número do curso: 206762_eng

Normas de Garantia de Informação do Governo dos EUA - [206763_ENG]

Descrição

To outline US government IA regulations

Público alvo

Pré-requisitos

Experience in selecting, recommending, and implementing information system security policies, standards, procedures, and technologies

Expected Duration (hours): 2.3

Lesson Objectives

US Government Information Assurance Regulations

• Define the role of the various bodies involved in Information Assurance regulations.
• Identify the role of the CNSS and its issuances.
• Identify the purpose of NIST documents.
• Identify CNSS issuances and NIST publications.
• Identify the regulations governing civil agencies.
• Identify DoD regulations.
• Identify civil agency and defense policies.

Número do curso: 206763_eng

RSS

Newsletter

Torne-se fã no

Siga-nos no

Conheça-nos no

Login
Password
OK