CCSPA

CCSPA

Security Triad:

• •Confidentiality
• •Integrity
• •Availability

Principles of Secure Design:

• •Principles
• •Principles and Reality

Risk Management:

• •Assets
• •Threats, Vulnerabilities, and Risk
• •Asset Value and Loss
• •Counter-measures

Security Policies:

• •Types of Security Policies
• •Administering Security Policies

Business Continuity Planning:

• •Business Continuity Planning
• •Business Impact Analysis
• •BCP Development
• •Testing a BCP
• •BCP Life Cycle

Operational Security:

• •Operational Security Defined
• •Origins of OPSEC
• •Laws of OPSEC
• •Know Your Adversary
• •Intelligence Gathering
• •Physical Security
• •Administrative Controls

Access Controls Models:

• •Confidentiality Access Control Model
• •Integrity Access Control Model
• •Access Control Models

Communicating Security Effectively:

• •Information Technology Staff Security Communications
• •Other Staff Security Communications Training
• •Management and Executive Staff Security Communications

Security Architecture:

• •Security Architecture Theory
• •System Security Architecture
• •Secure Network Architecture

Intrusion Detection:

• •Intrusion Defined
• •Types of Intruders
• •Intrusion Detection Concepts
• •Types of Intrusion Detection
• •Intrusion Detection Systems

Cryptography:

• •A Brief History of Cryptography
• •How Encryption Works
• •Encryption Algorithms
• •Internet Key Exchange

Baselining and Penetration Testing:

• •Baselining
• •Penetration Testing

Access Control Technologies:

• •Authentication Methods
• •Access Control Methods
• •Access Control Technologies
• •Administering Access Control
• •Accountability

Small-Network Security:

• •Remote Office/Branch Office
• •Remote Users
• •Small Businesses
• •Home Users

Intranets, Extranets, and Virtual Corporations:

• •Intranets
• •Extranets
• •Virtual Corporations

Securing the Enterprise:

• •Security Goals and Functions