Course

Skills Expanded

CISSP®: Security Assessment and Testing

by Lee Allen

In this course, you build upon the skills learned in previous CISSP domains and learn to put them all to use when validating the effectiveness of your controls.

Preview this course

Try for free

Get this course plus top-rated picks in tech skills and other popular topics.

$45.00

per month after 10 day trial

Your 10 day Premium free trial includes

Expanded library

This course and over 7,000+ additional courses from our full course library.

Hands-on library

Practice and apply knowledge faster in real-world scenarios with projects and interactive courses.

*Available on Premium only

For teams

Give up to 50 users access to our full library including this course free for 30 days

Course info

Rating

(15)

Level

Intermediate

Updated

Jun 20, 2018

Duration

2h 3m

What you'll learn

Your controls have been selected and implemented, users have been educated, and everything seems to be in order. Even if this is the case, odds are that there are still unidentified risks in your environment. If you want to be certain that your controls are working as intended, you will need to perform risk assessments and penetration testing. The 6th domain of the CISSP CBK addresses this concern with topics such as information assurance, testing strategies including penetration testing, log reviews, and third party assessment. In this course, CISSP®: Security Assessment and Testing, you build upon the skills learned in previous CISSP domain and learn to put them all to use when validating the effectiveness of your controls. First, you'll learn about security assessment and test strategies. Next, you'll learn about security controls validation, security and related data collection, as well as analyzing test results. Finally, the course will wrap up by covering third-party risk assessments. By the end this course, you should be familiar with a broad spectrum of topics that are covered within the sixth domain of the CISSP.

Course Overview

1min

Course Overview 2m

Assessment and Testing Strategies

31mins

Course Introduction 4m
Ensuring Objectives Have Been Met 9m
Resource Constraints 3m
Security Assessment Foundations 6m
Security Assessment Program 2m
Assessment Viewpoints 2m
Assessment Types 5m
Summary 1m

Security Control Effectiveness Testing

53mins

Introduction 1m
Vulnerability Assessment 5m
Detection 2m
Identification 2m
Analysis 2m
Reporting 1m
Mitigation 2m
Intro to Penetration Testing 3m
Penetration Testing 1m
Test Process Walkthrough 2m
Selecting Target Surface 2m
Destructing and Non-destructive Testing 3m
Penetration Testing Frameworks 2m
CISSP Exam Tip 1m
Penetration Testing Process 1m
Scoping the Test 3m
Enumeration 7m
Identification 4m
Security Assessment Techniques 7m
Source Code Review 3m
Summary 1m

Security Process Data Collection

9mins

Introduction 1m
Key Performance Risk Indicators 1m
Management Review 2m
Training and Awareness 1m
Account Management 1m
Disaster Recovery and Business Continuity 1m
Backup Data Verification 1m
Summary 1m

Test Result Analysis

11mins

Introduction 1m
Vulnerability Assessment 0m
Vulnerability Assessment Dashboards 1m
Targeted Reporting 1m
Data Analysis 1m
Penetration Testing Reports 0m
Reporting Challenges 2m
Penetration Testing Report Anatomy 4m
Summary 1m

Third-party Assessment

7mins

Introduction 1m
Third-party Vendors 1m
Evaluating Guidelines 1m
Audit Reports 1m
SSAE16 1m
Audit Stages 1m
Summary 1m

Information Security Continuous Monitoring

8mins

Introduction 1m
What Is ISCM? 1m
ISCM Strategy 1m
Defining Your ISCM Program Strategy 1m
Establishing Your ISCM Program Strategy 1m
Implementing Your ISCM Program Strategy 1m
Analyzing Your ISCM Program Strategy 1m
Respond to ISCM Findings 1m
Review Your ISCM Program Strategy 1m
Summary 1m

About the author

Lee Allen

With over two decades of experience in the security industry, Lee is a seasoned professional with a proven track record of delivering top-notch security services to a diverse range of organizations. From Internet Service Providers and computer manufacturers to global pharmaceutical companies, public universities, and a major bank, Lee has worked with some of the biggest names in the industry. With experience as a leader of the penetration testing team at a large bank, Lee has developed deep expe... more

See more courses by Lee Allen

Try for free

Get this course plus top-rated picks in tech skills and other popular topics.

$45.00

per month after 10 day trial

Your 10 day Premium free trial includes

Expanded library

This course and over 7,000+ additional courses from our full course library.

Hands-on library

Practice and apply knowledge faster in real-world scenarios with projects and interactive courses.

*Available on Premium only

For teams

Give up to 50 users access to our full library including this course free for 30 days

Course info

Rating

(15)

Level

Intermediate

Updated

Jun 20, 2018

Duration

2h 3m

Ready to upskill? Get started

Contact Sales

CISSP®: Security Assessment and Testing

What you'll learn

Table of contents

About the author

Ready to skill up
your entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Ready to skill up
your entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Support

Community

Company

Industries

Newsletter

Contact Sales

CISSP®: Security Assessment and Testing

What you'll learn

Table of contents

About the author

Get access now

Ready to skill upyour entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Ready to skill upyour entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Support

Community

Company

Industries

Newsletter

Ready to skill up
your entire team?

Ready to skill up
your entire team?