Gain core knowledge and experience to successfully manage security administration and operations and prepare for the Systems Security Certified Practitioner (SSCP®) certification.
Earning a globally recognised advanced security administration and operations certification like the SSCP is a great way to grow your career and better secure your organisation’s critical assets.
The ISC2 SSCP certification demonstrates you have the advanced technical skills and knowledge to implement, monitor and administer IT infrastructure using security best practices, policies and procedures established by the cybersecurity experts at ISC2.
Please note: The exam is not included in the course fee but can be purchased separately. Please contact us for a quote.
Can’t see the video above? Click here to open it in a new screen.
ISC2 SSCP certification demonstrates you have the advanced technical skills and knowledge to implement, monitor and administer IT infrastructure using security best practices, policies and procedures established by the cybersecurity experts at ISC2.
ISC2 at Lumify Work
ISC2: The world’s leading cyber security and IT security professional organisation. Lumify Work is one of only a few select training providers in Australia with campuses in New Zealand and the Philippines. We offer official ISC2 courses and training materials.
The ISC2 Systems Security Certified Practitioner is ideal for IT administrators, managers, directors and network security professionals responsible for the hands-on operational security of their organisation’s critical assets, including those in the following positions:
Network Security Engineer
Systems Administrator
Security Analyst
Systems Engineer
Security Consultant/Specialist
Security Administrator
Systems/Network Analyst
Database Administrator
Course subjects
The ISC2 SSCP exam evaluates your expertise across seven security domains. Think of the domains as topics you need to master based on your professional experience and education.
Refer to the SSCP Exam Outline for a deeper dive into the SSCP domains.
Domain 1. Security Operations and Administration
Comply with codes of ethics
Understand security concepts
Identify and implement security controls
Document and maintain functional security controls
Participate in asset management lifecycle (hardware, software and data)
Participate in change management lifecycle
Participate in implementing security awareness and training (e.g., social engineering/ phishing)
Collaborate with physical security operations (e.g., data center assessment, badging)
Domain 2. Access Controls
Implement and maintain authentication methods
Support internetwork trust architectures
Participate in the identity management lifecycle
Understand and apply access controls
Domain 3. Risk Identification, Monitoring and Analysis
Understand the risk management process
Understand legal and regulatory concerns (e.g., jurisdiction, limitations, privacy)
Participate in security assessment and vulnerability management activities
Operate and monitor security platforms (e.g., continuous monitoring)
Analyse monitoring results
Domain 4. Incident Response and Recovery
Support incident lifecycle (e.g., National Institute of Standards and Technology (NIST), International Organisation for Standardisation (ISO))
Understand and support forensic investigations
Understand and support business continuity plan (BCP) and disaster recovery plan (DRP) activities
Domain 5. Cryptography
Understand reasons and requirements for cryptography
Apply cryptography concepts
Understand and implement secure protocols
Understand and support public key infrastructure (PKI) systems
Domain 6. Network and Communications Security
Understand and apply fundamental concepts of networking
Understand network attacks (e.g., distributed denial of service (DDoS), man-in-the-middle (MITM), Domain Name System (DNS) poisoning) and countermeasures (e.g., content delivery networks (CDN))
Manage network access controls
Manage network security
Operate and configure network-based security devices
Secure wireless communications
Domain 7. Systems and Application Security
Identify and analyse malicious code and activity
Implement and operate endpoint device security
Administer Mobile Device Management (MDM)
Understand and configure cloud security
Operate and maintain secure virtual environments
Prerequisites
Candidates must have a minimum of one year cumulative paid work experience in one or more of the seven domains of the SSCP CBK® (Common Body of Knowledge). A one year prerequisite pathway will be granted for candidates who received a degree (bachelors or masters) in a cybersecurity program.
A candidate who doesn’t have the required experience to become an SSCP may become an Associate of ISC2 by successfully passing the SSCP exam. An Associate of ISC2 can then accumulate the necessary work experience to achieve full certification.
FREE E-BOOK: Meeting the Cyber Security Challenge
What are the top challenges in cyber security? Gain insight into how organisations can address challenges through cyber security training programs that build a skilled and diverse cyber workforce.
The supply of this course by Lumify Work is governed by the booking terms and conditions. Please read the terms and conditions carefully before enrolling in this course, as enrolment in the course is conditional on acceptance of these terms and conditions.
Request Course Information
Personalise your schedule with Lumify USchedule
Interested in a course that we have not yet scheduled? Get in touch, and ask for your preferred date and time. We can work together to make it happen.
Continue your learning experience online with Lumify Plus
Lumify Plus (formerly DDLS Plus) is your online learning pathway to extend knowledge beyond courses. Get resources to help you practice what you learned and prepare for future courses, exams and certifications.
Lumify Work offers cyber security training to cater for all levels of your organisation - from front-line staff to highly experienced senior cyber security professionals. We’ve partnered with the leading vendors to provide the most comprehensive cyber security training solutions in Australasia.