CISSP – Domain 3 – Security Engineering

Course Curriculum

Chapter 1: Introduction

Lecture 1: Introduction

Chapter 2: Using Security Design Principles in The Engineering Lifecycle

Lecture 1: Systems Engineering

Chapter 3: Understanding Fundamental Concepts of Security Models

Lecture 1: Common System Components

Lecture 2: Enterprise Security Architecture

Lecture 3: Common Architecture Frameworks

Lecture 4: Introducing Types of Security Models

Lecture 5: The Bell-LaPadula Confidentiality Model

Lecture 6: The Biba Integrity Model

Lecture 7: The Clark-Wilson Integrity Model

Lecture 8: Other Types of Security Models

Lecture 9: Capturing and Analyzing Requirements

Lecture 10: Creating and Documenting Security Architecture

Chapter 4: Exploring Information Systems Security Evaluation Models

Lecture 1: Common Formal Security Models

Lecture 2: Trusted Computer System Evaluation Criteria

Lecture 3: Information Technology Security Evaluation Criteria

Lecture 4: The Common Criteria

Lecture 5: Industry and International Security Implementation Guidelines

Chapter 5: Ensuring Security Capabilities of Information Systems

Lecture 1: Access Control Mechanisms

Lecture 2: Secure Memory Management

Chapter 6: Discovering Vulnerabilities of Security Architectures

Lecture 1: Systems

Lecture 2: Technology and Process Integration

Lecture 3: Single Point of Failure (SPOF)

Lecture 4: Client-Based Vulnerabilities

Lecture 5: Server-Based Vulnerabilities

Chapter 7: Database Security

Lecture 1: Database Security

Lecture 2: Large Scale Parallel Data Systems

Lecture 3: Distributed Systems

Lecture 4: Rapid Elasticity

Lecture 5: Cryptographic Systems

Lecture 6: Stream-Based Ciphers

Lecture 7: Block Ciphers

Lecture 8: Defining Symmetric Cryptography

Lecture 9: Counter Mode Algorithms

Lecture 10: Defining Asymmetric Cryptography

Lecture 11: Asymmetric Cryptography

Lecture 12: Hashing and Hybrid Cryptography

Chapter 8: Analyzing Vulnerabilities and Threats

Lecture 1: Web Based

Lecture 2: Risks from Remote Computing

Lecture 3: Risks from Mobile Workers

Lecture 4: Embedded Cyber Physical Systems (CPS)

Chapter 9: The Application and Use of Cryptography

Lecture 1: The History of Cryptography

Lecture 2: Emerging Technology

Lecture 3: Core Information Security Principles

Lecture 4: Additional Features of Cryptographic Systems

Lecture 5: The Cryptographic Lifecycle

Lecture 6: Public Key Infrastructure (PKI)

Lecture 7: Key Management Process

Lecture 8: Creation and Distribution of Keys

Lecture 9: Digital Signatures

Lecture 10: Digital Rights Management (DRM)

Lecture 11: Non-Repudiation

Lecture 12: Hashing

Lecture 13: Hash Functions

Lecture 14: Methods of Cryptanalytic Attacks

Chapter 10: Site Planning

Lecture 1: Roadway Design

Lecture 2: Crime Prevention through Environmental Design

Lecture 3: Windows

Lecture 4: Garages

Lecture 5: Location Threats

Chapter 11: Implementing and Operating Facilities Security

Lecture 1: Federal Emergency Management Agency (FEMA) Publications

Lecture 2: Communications and Server Rooms

Lecture 3: Restricted and Work Area Security

Lecture 4: Data Center Security

Chapter 12: Conclusion

Lecture 1: Course Recap

Chapter 13: CISSP – Domain 3 – Security Engineering Assessment

Chapter 14: BONUS LECTURES: Cyber Security for the End User Course

Lecture 1: Understanding Cyber Threats

Lecture 2: Using Email and Internet Wisely