Course Description

Protecting critical data is essential when dealing with sensitive material. Security audits and assessments are used to perform oversight and identify the effectiveness of security controls, and concepts about security operations (SecOps). You will learn how to design and validate security assessments, test and audit strategies, conduct security control testing and facilitate security audits.

Students will explore critical topics in SecOps, including the physical security of data and operational facilities, incident response, conducting investigations, handling material and evidence, digital forensics, disaster recovery processes, and business continuity planning.

This course covers the following domains of the CISSP Common Body of Knowledge:

  • Domain Six: Security Assessment and Testing
  • Domain Seven: Security Operations

Course Details

Course Learning Outcomes

By the completion of this course, successful learners will be able to:

  • Demonstrate knowledge in the design and validation of security assessment, test and audit strategies, and security control testing
  • Collect security process data and generate a report
  • Describe and apply security investigation processes, logging and monitoring activities, Configuration Management (CM), incident management, and change management processes
  • Demonstrate knowledge in foundational security operations concepts, resource protection, detective and preventive measures, patch and vulnerability management, and physical security
  • Explain and apply recovery strategies, Disaster Recovery (DR) processes, Disaster Recovery Plans (DRP), and Business Continuity (BC) planning


  • Security Assessments
    • Test, assessment, and audit strategies
    • Testing technical security controls
    • Conducting or facilitating security audits
  • Measuring Security
    • Security metrics
    • Security process data
    • Reporting
    • Management review and approval
  • Managing Security Operations
    • Foundational security operations concepts
    • Change management processes
    • Configuration management
    • Resource protection
    • Patch and vulnerability management
    • Physical security management
    • Personnel safety and security
  • Security Operations
    • Security operations center (SOC)
    • Preventive and detective measures
    • Logging and monitoring
  • Security Incidents
    • Incident management
    • Incident response planning
    • Investigations
  • Disasters
    • Recovery strategies
    • Disaster recovery processes
    • Testing disaster recovery plans
    • Business continuity

Who is this course for?

This course will help you to acquire the knowledge covered in the following domains of the CISSP CBK:

  • Domain Six: Security Assessment and Testing
  • Domain Seven: Security Operations

Individuals in different roles and at various stages in their careers can benefit from this course. The course is designed for:

  • Recent graduates (degree, associate degree, diploma) in IT or Computer Science who plan to challenge the CISSP exams to become Associate of (ISC)2
  • Experienced IT professionals who are keen to move up the career ladder entering senior positions (e.g. manager, director, senior specialist, chief information security officer)
  • Individuals who want to learn the technical skills to a career change into cyber security or information security
  • IT infrastructure or Cyber Security professionals looking to upskill and learn new in-demand skills


There are no mandatory prerequisites for this course. However, you are required to perform a self-assessment to ensure you meet the requirements to enrol.

Self-assessment for enrolment

Recent graduates (degree, associate degree, or diploma) in IT / Computer Science or related field


At least 2 years of working experience in IT infrastructure or Cybersecurity


Recommended prerequisites

Applies Towards the Following Program(s)

Enrol Now - Select a section to enrol in
Online Synchronous
T, Th
6:00PM to 9:00PM
Nov 05, 2024 to Nov 28, 2024
Schedule and Location
Delivery Options
Course Fees
Flat Fee non-credit $799.00
Potential Price Adjustments
Reading List / Textbook

Maymi, F., & Haris, S. (2022). CISSP All-in-One Exam Guide (9th Edition). McGraw Hill.

ISBN: 9781260467369

Section Notes

Classes are held online in real time (Mountain Time) at the specified time and dates.

This course uses:

  • Desire2Learn (D2L), an online learning management system. The instructor will post the course outline and other materials in D2L.
  • Zoom web conferencing software.

For more information, please visit our Online Learning Resources.

Unless notified, all online courses are available at 9 am MT the day before the start date. Students registering on (or after) the start date will receive access within one day of registration.

Students unfamiliar with online learning are encouraged to take our free Digital Skills for Learning Online course.

Unless otherwise stated, notice of withdrawal or transfer from a course must be received at least seven calendar days prior to the start date of the course.

Required fields are indicated by .