SSCP - ISC²

1. Introduction to Cyber Security

  • Overview of Cyber Security
  • Importance of Cyber Security
  • Cyber Security Terminology
  • Threats, Vulnerabilities, and Risks

2. Access Controls

  • Identification, Authentication, and Authorization
  • Access Control Models (DAC, MAC, RBAC)
  • Implementation of Access Controls
  • Managing User Accounts and Permissions
  • Monitoring and Auditing Access Controls

3. Security Operations and Administration

  • Security Policies, Procedures, and Standards
  • Security Operations Management
  • Incident Response and Handling
  • Business Continuity and Disaster Recovery
  • Data Backup and Recovery Strategies

4. Risk Identification, Monitoring, and Analysis

  • Risk Management Process
  • Risk Assessment and
  • Analysis Techniques
  • Risk Mitigation Strategies
  • Security Monitoring and Continuous Improvement
  • Security Metrics and Reporting

5. Cryptography

  • Basic Concepts of Cryptography
  • Encryption and Decryption Techniques
  • Cryptographic Algorithms and Protocols
  • Public Key Infrastructure (PKI)
  • Key Management Practices

6. Network and Communications Security

  • Network Security Concepts
  • Securing Network Devices and Infrastructure
  • Network Protocols and Security Mechanisms
  • Wireless Network Security
  • Remote Access Security

7. Systems and Application Security

  • System Hardening Techniques
  • Security of Operating Systems and Applications
  • Vulnerability Management
  • Secure Software Development Life Cycle (SDLC)
  • Web and Mobile Application Security

8. Incident Response and Recovery

  • Incident Detection and Analysis
  • Incident Response Planning and Execution
  • Forensic Investigations
  • Post-Incident Activities and Lessons Learned
  • Communication and Coordination during Incidents

9. Legal, Regulations, Compliance, and Investigations

  • Incident Detection and Analysis
  • Incident Response Planning and Execution
  • Forensic Investigations
  • Post-Incident Activities and Lessons Learned
  • Communication and Coordination during Incidents

10. Exam Preparation and Practice

  • SSCP Exam Format and Structure
  • Study and Test-Taking Strategies
  • Practice Exams and Review Sessions
  • Time Management Tips for Exam Day
  • Final Review and Q&A Session