Who should take the CISSP?

It’s not an exaggeration to call the CISSP one of the most prestigious, respected IT security credentials in the world. Mid-career IT security professionals (engineers, architects, and managers alike) should be seriously considering the CISSP. It’s aimed at professionals who are angling for senior or CISO-track roles.

How much does it cost to earn the CISSP?

The CISSP exam costs $749, but that only gets you one attempt. Additional attempts, official courses, practice tests and study guides can all cost quite a lot more, in some cases several thousand dollars. Once you’re certified, you also have to pay $135 a year to maintain the cert.

Does earning the CISSP cert pay well?

Yes, earning the CISSP qualifies you for high-level IT security positions that can pay as much as $120K to $170K. Employers are eager to hold on to security professionals who have the skills and knowledge the CISSP validates, but also who have the commitment to self-improvement that earning it requires.

Is the CISSP exam hard?

Yes, the CISSP exam is very hard. The exam covers eight domains of cybersecurity management and passing it requires that you apply concepts, not just recall them. Even seasoned practitioners need months of study and preparation – plus a few practice exams – to pass the four-hour test.

Is the CISSP worth it?

Yes, for security professionals who want to land high-level management or architect roles, the CISSP is absolutely worth it. Very few cybersecurity certifications command the respect and attention the CISSP grants its holders. Having one boosts salary potential and can even satisfy some regulatory and client contract requirements for key positions.

ISC2 Certified Information Systems Security Professional (CISSP) Online Training

Ready to earn your CISSP certification? Level up your cybersecurity career with CISSP training. This course breaks down all eight ISC2 CISSP domains into easy-to-follow, expert-led lessons. You'll learn practical knowledge on governance frameworks, secure design principles, and incident handling while sharpening risk analysis, policy writing, and business continuity planning. Plus, get access to unlimited practice exams and our CISSP study guide PDF to keep you on track. This course helps you train smarter, stay focused, and get certified with confidence.

Bob SalmansCybersecurity & Governance, Risk, and Compliance (GRC)

Updated October 2025

Request a Demo Preview a sample lesson

24Skills

144Videos

1Practice Exam

21h 40mTotal

144 videos1 exam21h 40m

Who This Course Is For

This course is designed to help mid-career security professionals move into senior information security positions. Security engineers, architects and IT managers with five-plus years of experience should take this course and earn the deep technical and managerial knowledge and experience that proves they can handle designing, engineering and managing the overall security posture of an organization.

Course Curriculum

Premium skill.Ethics and Security Fundamentals46m
Premium skill.Governance and Compliance1h 4m
Premium skill.Investigations, Policy Development and BCP54m
Premium skill.Risk Management and Security Controls58m
Premium skill.Threat Modeling and Security Awareness Training58m
Premium skill.Managing Asset Security53m
Premium skill.Secure Design Principles1h 1m
Premium skill.Cryptographic Solutions and Attacks47m
Premium skill.Securing Facilities and the IS Lifecycle47m
The Building Blocks of NetworkingFree1h 4m
Premium skill.IP Addressing and Secure Protocols48m
Premium skill.Network Protocols and Architecture1h
Premium skill.Securing Wireless, SDN and VPCs1h 1m
Premium skill.Securing Network Components & Communications1h 12m
Premium skill.Identity and Authentication Strategy44m
Premium skill.Authorization Mechanisms and Identity Management52m
Premium skill.Security Assessments & Testing Methods59m
Premium skill.Data Collection and Auditing47m
Premium skill.Complying With Investigations48m
Premium skill.Infrastructure Awareness and Security Concepts53m
Premium skill.Resource Protection and Management 48m
Premium skill.BC/DR, Physical Security & Safety59m
Premium skill.Secure Software Development48m
Premium skill.Assessing Application Security49m

Part of the Security & Compliance training initiative

Platform Features

For IT leaders

What IT leaders need to know before assigning this course

Security leadership often needs a common operating model for governance, risk, compliance, and technical security decisions across teams. This CISSP course is a fit for IT Directors, Training Managers, and Team Leads supporting experienced security practitioners, IT managers, architects, and engineers who need management-level security breadth and certification readiness.

The course covers approximately 21 hours, 40 minutes of training, making it practical for a multi-week enablement plan rather than a one-time workshop. Topics move from ethics, governance, compliance, investigations, policy, BCP/DR, and risk management into asset security, secure design, cryptography, networking, IAM, testing, auditing, infrastructure protection, physical security, and secure software development. For change management, teams should plan time for discussion around existing policies, audit requirements, incident processes, and security ownership.

CBT Nuggets supports rollout through Playlists for assignment structure, Practice Exams for certification preparation, and Team Reporting to track progress and completion.

Team Impact

How this training helps your team succeed

IT teams complete this CISSP training to connect security strategy with day-to-day operational decisions. The course emphasizes scenarios where security leaders must balance governance, technical controls, investigations, and business continuity.

Improve audit and compliance readiness by aligning governance, policy development, data retention, investigations, and evidence handling with security program expectations.
Reduce outage and recovery risk by strengthening team understanding of business continuity, disaster recovery, physical security, safety, and resource protection.
Make stronger architecture decisions by applying secure design principles, cryptographic concepts, network security, wireless security, SDN, VPCs, and secure communications.
Standardize access and testing practices by reinforcing identity strategy, authentication, authorization, security assessments, auditing, and application security review.

After completion

Knowledge & ability your team will gain

Knowledge

Security ethics, governance responsibilities, and compliance concepts relevant to CISSP-aligned roles
Risk management, security controls, threat modeling, and security awareness concepts
Asset security, data handling, retention, auditing, and investigation considerations
Secure design principles, cryptographic solutions, network protocols, and secure communications
Identity, authentication, authorization, infrastructure security, BC/DR, and physical security concepts
Secure software development and application security assessment practices

Ability

Evaluate security policies, controls, and governance practices against organizational risk needs
Support incident investigations, evidence handling, auditing, and compliance-driven processes
Contribute to business continuity and disaster recovery planning discussions
Assess network, wireless, cloud-networking, and communication security decisions at a program level
Apply IAM concepts to authentication, authorization, and identity management strategy
Prepare more effectively for the ISC2 CISSP certification exam