The CISSP test is designed to certify users who have a minimum of five years of professional experience in information security. The CISSP test covers implementing security policy, identifying security threats, and developing countermeasures using firewall systems and attack-recognition technologies. Before taking the CISSP test, you should practice the following:
- Implement network perimeter security and elements of an effective security policy.
- Implement encryption, including the three main encryption methods used in internetworking.
- Implement public key infrastructure and hashing function.
- Implement firewalls on the network.
- Understand firewall system planning, including levels of protection.
- Use tools to evaluate key security parameters, including techniques for security accounts.
- Implement system patches and fixes, including application of system patches.
- Audit security and assess network risk factor.
- Identify potential attacks and analyze audit and security logs.
- Restore data backup.
- Identify assets and manage them.
- Use risk management tools.
- Design secure data networks.
- Use access control methods and monitor access control.
- Implement remote access using dial-up, ISDN, DSL, and VPN with authentication protocols.