(ISC)² CISSP – Certified Information Systems Security Professional - 2021

Security leaders often need senior practitioners who can connect governance, architecture, operations, and software security into one defensible program. This CISSP training is built for teams that need broad, management-level security coverage across the eight CISSP CBK domains so they can support policy decisions, strengthen controls, and prepare for certification without piecing together multiple point courses.

For an IT Director or Training Manager, this course fits experienced security staff best: security professionals with roughly five years of experience in security policy and management, including analysts, engineers, architects, and IT managers moving into wider security responsibility. Because the material spans risk management, compliance, security engineering, IAM, testing, and SDLC concepts, it is better suited for planned enablement than quick onboarding.

Teams assign this training when they want a shared security vocabulary, stronger alignment between technical controls and business requirements, and a structured path toward CISSP exam readiness. CBT Nuggets supports rollout with Practice Exams for certification prep, Playlists for staged team learning, and Team Reporting so leaders can track progress across assigned learners.

Security programs break down when teams treat policy, architecture, identity, and testing as separate efforts. This training helps experienced practitioners connect those responsibilities into one operating model grounded in common CISSP domains.

In practical terms, teams use this training to:

• Improve risk and compliance discussions by grounding decisions in governance, security policy, asset classification, and standards such as the ISO/IEC 27000 series.
• Reduce outage and incident impact by reinforcing business continuity planning, disaster recovery, investigations, and evidence-handling concepts.
• Strengthen technical control design with coverage of cryptography, secure design principles, network access control, and identity and access management.
• Support secure change delivery by tying security assessment, testing, threat modeling, and SDLC practices back to organizational security requirements.

For organizations building internal security leadership, that means fewer gaps between teams, better audit readiness, and less reliance on outside specialists for foundational security planning.

Knowledge

• The scope and purpose of the eight CISSP CBK domains and how they support enterprise security programs
• Core security governance concepts, including risk management, compliance, security policies, and the CIA triad
• Security architecture and engineering topics such as secure design principles and cryptography
• Identity and access management, network and communications security, and access control concepts
• Security assessment, testing, investigations, evidence handling, and related operational practices
• Software development lifecycle and threat-modeling concepts as they relate to secure systems

Ability

• Contribute to the design, implementation, and maintenance of organizational cybersecurity programs
• Evaluate security controls against business requirements for confidentiality, integrity, and availability
• Support risk assessments, business continuity discussions, and disaster recovery planning efforts
• Apply concepts for asset classification, policy development, and compliance-oriented security processes
• Participate more effectively in security architecture, IAM, and secure network design conversations
• Prepare in a structured way for the CISSP exam and for broader senior-level security responsibilities