C)SP: Security Principles

Security Principles are your first line of defense, but often the last box checked! The IT world never stands still! Therefore, neither can IT security. It does not matter if we are talking about the implementation of loT devices or cloud services, security is important. According to a recent study, the top source of security incidents within a company are the current employees!

The Certifed Security Principles, C)SP, course is going to prepare you for security across the entire environment including understanding risk management, identity and access control, network and data security. This is just a short list of everything that we cover within this course, which will include new technologies like loT and cloud services. 

This course is intended to prepare you to become a benefit to any company that is attempting to improve its security posture!

The C)SP is a Foundational Part of Several Career Paths

We suggest that you master the concepts in the C)SP before moving into 300 level in the Management, Response and Recovery, or Auditing Career Paths.  This course will introduce you to many of the key concepts you will need to succeed in the other courses.

Key takeaways

Upon completion you will be able to understand the principle security knowledge to keep companies' IP and IT infrastructure safe.

By completing this course you will earn 40 CEUs.

Prerequisites

Suggested Prerequisites:

 

  • 12 Months of experience with server administration OR
  • Mile2 C)SA1, C)SA2, C)HT, C)OST and C)NP OR
  • Equivalent Knowledge

Target audience
  • IT Professionals
  • Server Administrators
  • Virtualization and Cloud Administrators

 

 

Modules: 

  • Module 1 - Intro to IT Security
  • Module 2 - Risk Management
  • Module 3 - Understanding of Cryptography
  • Module 4 - Understanding Identity and Access Management
  • Module 5 - Managing Data Security
  • Module 6 - Managing Network Security
  • Module 7 - Managing Server/Host Security
  • Module 8 -Application Security for Non­Developers
  • Module 9 – Understanding Mobile Device Security
  • Module 10 – Managing Day to Day Security
  • Module 11 – Understanding Compliance and Auditing

Detailed Outline:

Course Introduction 

Module 1 – Introduction to IT Security

  1. Understanding Security
  2. Responsibilities
  3. Building a Security Program
  4. CIA Triad
  5. Governance, Risk, Compliance
  6. State of Security Today

Module 2 – Risk Management

  1. Risk Management
  2. Risk Assessment
  3. Types of Risk, Threats and Vulnerabilities
  4. Mitigating Attacks
  5. Discovering Vulnerabilities and Threats
  6. Responding to Risk

 Module 3 – Understanding of Cryptography

  1. Understanding Cryptography
  2. Symmetric Encryption
  3. Asymmetric Encryption
  4. Hashing
  5. PKI
  6. Cryptography in Use

 Module 4 – Understanding Identity and Access Management

  1. Identity Management
  2. Authentication Techniques
  3. Single Sign-on
  4. Access Control Monitoring

Module 5 – Managing Data Security

  1. Virtualization Principles
  2. Key Components Mapped to Cloud Layer
  3. Key Security Concerns
  4. Other Technologies Used in the Cloud
  5. The Layers
  6. Relevant CCM Controls

 Module 6 – Data Security

  1. Different Types of Storage
  2. Encryption Options
  3. Data Management

 Module 7 – Managing Server/Host Security

  1. The Operating Systems
  2. Hardening the OS
  3. Physical security
  4. Virtualization and Cloud Technologies

 Module 8 – Application Security for Non-Developers

  1. Application Security Principle
  2. Software Development Life Cycle
  3. OWASP Top 10
  4. Hardening Web Applications
  5. Patch/Update/Configuration Management

 Module 9 – Understanding Mobile Device Security (IoT)

  1. What Devices are we talking about?
  2. What is the risk?
  3. Hardening Mobile/IoT Devices
  4. Corporate Management

 Module 10 – Managing Day to Day Security

  1. Company Responsibilities
  2. Product Management
  3. Business Continuity Basics
  4. Incident Response
  5. Why Train?

 Module 11 – Understating Compliance and Auditing

  1. Benefits of Compliance
  2. Assurance Frameworks
  3. What is Auditing  

Objective:
Upon completion, the Certified Security Principles candidate will be able to competently take the C)SP exam. 

Exam information:

The exam is taken online through Mile2’s Learning Management System and is accessible on your Mile2.com account.  

A minimum grade of 80% is required for certification.

Your exam is included in the course fee!

Re-certification requirements:

All Mile2 certifications will be awarded a 3-year expiration date.

There are two requirements to maintain Mile2 certification:

  • Pass the most current version of the exam for your respective existing certification
  • Earn and submit 20 CEUs per year in your Mile2 account  

1. Hvem passer dette kurset for?

For IT-profesjonelle som vil styrke sikkerhetsarbeidet på tvers av infrastruktur: serveradministratorer samt virtualiserings- og skyadministratorer. Også relevant for bredere IT-roller som må forstå risiko, tilgangsstyring og sikring av data, nettverk og endepunkter.

2. Hvilke forkunnskaper bør jeg ha?

Det er anbefalt med ca. 12 måneders erfaring fra serveradministrasjon eller Mile2-kurs som C)SA1, C)SA2, C)HT, C)OST, C)NP, eller tilsvarende kunnskap. (Veiledende krav – ikke obligatoriske.)

3. Hva lærer jeg i kurset?

Du dekker kjerneområder i moderne sikkerhet: risikostyring, kryptografi, IAM/tilgangskontroll, datasikkerhet, nettverks- og server/host-sikkerhet, applikasjonssikkerhet for ikke-utviklere (inkl. OWASP Top 10), mobil/IoT-sikkerhet, dag-til-dag-sikkerhet og compliance/revisjon. Målet er å kunne beskytte virksomhetens IP og IT-infrastruktur helhetlig.

4. Hvordan foregår kurset?

Leveres som klasseromskurs, live virtuelt eller bedriftsinternt/skreddersøm. Undervisning kombinerer forelesning, scenariobaserte eksempler og korte øvelser. Varighet: 5 dager og 40 CEUs ved gjennomføring.

5. Er dette kurset praktisk?

Ja – fokus er på anvendte prinsipper og kontroller du bruker i drift: fra forsterket sikring av operativsystemer og nettverk, til risikovurdering, hendelseshåndtering og etterlevelse. Du forberedes til å forbedre virksomhetens sikkerhetsposisjon i praksis.

6. Hvor mye koster kurset?

Kursavgiften er 25 000 NOK, og eksamen er inkludert i prisen.

7. Hva slags materiell får jeg?

Du får tilgang til Mile2 sitt digitale læringssystem, offisielt kursmateriell, videoer og øvelser.

8. Gir kurset sertifisering?

Ja – kurset inkluderer sertifiseringseksamner Certified Security Principles.

  • Du må ha minst 80 % riktig for å bestå.

Eksamen tas online via Mile2 sin læringsplattform.

9. Hvor lenge varer sertifiseringen?

Sertifiseringen er gyldig i 3 år. For å beholde den må du:

  1. Bestå den nyeste versjonen av eksamen
  2. Opparbeide og registrere 20 CEUs per år i Mile2-kontoen din

10. Kan jeg delta digitalt?

Ja – kurset tilbys både som fysisk kurs i klasserom og som live, virtuelt kurs.

11. Kan jeg få kurset spesialtilpasset?

Ja – kurset kan tilbys bedriftsinternt og tilpasses organisasjonens behov.

12. Kan jeg bestille kurset for min organisasjon?

Ja – vi tilbyr bedriftsinterne kurs både fysisk og virtuelt.

Andre relevante kurs

C)CSA: Cybersecurity Analyst
5 dager
Classroom Virtual
C)CSO: Cloud Security Officer
5 dager
Classroom Virtual
C)CSSA: Cybersecurity Systems Auditor
4 dager
Classroom Virtual
C)CSSM: Certified Cybersecurity Systems Manager
4 dager
Classroom Virtual