SYSTEMS SECURITY CERTIFIED PRACTITIONER - SSCP

 

The Systems Security Certified Practitioner (SSCP®) certification program is the property of (ISC)² who developed and now manage the program. Australian College of Information Technology offers the SSCP course as a subject within the Advanced Diploma of Information Technology (Network Security) to prepare students to take the SSCP certification examination. Australian College of Information Technology is an Authorized Sun™ Education Centre.

About ISC)²®
ISC)²® is the globally recognized Gold Standard for certifying information security professionals throughout their careers. ISC)²® has certified over 50,000 information security professionals in more than 120 countries.
Founded in 1989 by industry leaders, (ISC)² issues the Certified Information Systems Security Professional (CISSP®) and related concentrations: Information Systems Security Architecture Professional (ISSAP®), Information Systems Security Management Professional (ISSMP®) and Information Systems Security Engineering Professional (ISSEP®); the Certification and Accreditation Professional (CAP®); and the Systems Security Certified Practitioner ((SSCP®) credentials to those meeting the necessary competency requirements. Several of (ISC)²'s credentials meet the stringent requirements of ANSI/ISO/IEC Standard 17024, a global benchmark for assessing and certifying personnel.

The SSCP designation is frequently viewed as the first step on an information security career path. The SSCP credential offers an independent, objective and vendor neutral measure for information security tacticians to demonstrate their level of competence with the seven domains of the compendium of best practices for information security.

The subject covers:

Access Controls
•  Introduction
•  Identification
•  Authentication
•  Authorization
•  Logical Access Controls in Terms of Subjects
•  Logical Access Controls in Terms of Objects
•  Authentication Implementation
•  Access Control Concepts
•  Operating System Hardening
•  Vulnerability Management

Security Operations and Administration
•  What Is “Security Administration”?
•  Fundamentals of Information Security
•  Compliance with Policy Infrastructure
•  Security Administration: Data Classification
•  Identity Management
•  Security Administration: Configuration Management
•  Change Management Process
•  Secure System Development Life Cycle
•  Software Development Methods
•  The Iterative Development Model
•  The Exploratory Model
•  The Rapid Application Development (RAD) Model
•  The Spiral Model
•  The Computer Aided Software Engineering (CASE) Model
•  Extreme Programming
•  Security Management Planning
•  Creating the Security Statement
•  Organization Security Evaluation and Assistance
•  Operating Utilities and Software
•  User Security Awareness Education
•  Security Training
•  Security Education
•  Security Administration: Policies, Standards, and Guidelines
•  Implementing Security Requirements Guidance
•  Evaluation Criteria
•  Security Best Practices Implementation

Analysis and Monitoring
•  Section 1: Security Auditing
•  Section 2: Security Testing
•  Section 3: Security Monitoring

Risk, Response, and Recovery
•  Section 1: Risk Management
•  Section 2: Response
•  Computer Incident Response Issues
•  Incident Response Procedures
•  Section 3: Recovery

Cryptography
•  Business and Security Requirements for Cryptography
•  Principles of Certificates and Key Management
•  Hash Functions and Data Integrity
•  Secure Protocols

Networks and Telecommunications
•  Introduction to Networks and Telecommunications
•  Network Protocols and Security Characteristics
•  Data Communications and Network Infrastructure
•  Identification and Authentication for Remote Users
•  Wireless Local Area Networking
•  Need for Security Policies, Standards, and Procedures for the IT Infrastructure

Malicious Code
•  Introduction
•  Phases of an Attack
•  Hackers, Crackers, and Other Perpetrators
•  Social Engineering
•  Incident Detection Tools and Techniques
•  Attack Prevention Tools and Techniques