Certified Information Systems Security Officer – CISSO

Mile2’s Certified Information Systems Security Officer – C)ISSO addresses the broad range of industry best practices, knowledge and skills expected of a security manager/officer. The candidate will learn in-depth theory pertaining to the practical implementation of core security concepts, practices, monitoring and compliance in the full panorama of IS management. Through the use of a risk-based approach, the CISSO is able to implement and maintain cost-effective security controls that are closely aligned with both business and industry standards. Whether you’re responsible for the management of a Cyber Security team, a Security Officer, an IT auditor or a Business Analyst, the C)ISSO certification course is an ideal way to increase your knowledge, expertise, and skill.

The C)ISSO course/certification has been validated by the NSA for: CNSSI-4012, National Information Assurance Training Standard for Senior System Managers and NSTISSI-4011, National Training Standard for Information Systems Security (INFOSEC). CISSO certification training was a direct initiative of the DND – Department of National Defence of Canada in cooperation with the DOD – Department of Defense of the United States; defined in the dual initiative titled CANUS CDISM MOU –
ID#: 1974100118 found at: http://www.state.gov/documents/organization/1 11449.pdf. In the CANUS CDISM MOU, it stated the following:

• The CDRSN National Information System Security Officer (ISSO) is the focal point for all security issues pertaining to this network.
• The Director Information Management Security (DIMSECUR) is the DND authority for security assessment of the CDRSN, including the approval of Interim Authority to Process (IAP) and Authority to Communicate.

With these initiatives in mind, Mile2 created the Certified ISSO.

Who should attend

• • IS Security Officers
  • IS Managers
  • Risk Managers
  • Auditors
  • Information Systems Owners
  • IS Control Assessors
  • System Managers
  • Government

Course areas covered

• • Module 1 – Risk Management
  • Module 2 – Security Management
  • Module 3 – Identity Management
  • Module 4 – Access Control
  • Module 5 – Security Models and Evaluation Criteria
  • Module 6 – Operations Security
  • Module 7 – Symmetric Cryptography and Hashing
  • Module 8 – Asymmetric Cryptography and Hashing
  • Module 9 – Network Connections
  • Module 10 – Network Protocols and Devices
  • Module 11 – Telephony, VPNs, and Wireless
  • Module 12 – Security Architecture and Attacks
  • Module 13 – Software Development Security
  • Module 14 – Database Security
  • Module 15 – Malware and Software Attacks
  • Module 16 – Business Continuity and Disaster Recovery
  • Module 17– Incident Management, Law, and Ethics
  • Module 18 – Physical Security

Why Mile2 CISSO:

Although the CISSP from ISC2 and the CISSO from Mile2 are distinct IT certifications they share some important characteristics. What’s the main difference between the two? The CISSP requires 5-years of experience, while the C)ISSO was designed to provide a more hands-on knowledge base.

It’s interesting to note that both of these IT certification exams were written by the same author and designed to provide authentication of similar skill sets.
Written by Kevin Henry, both certifications were designed to provide foundational cyber security knowledge to candidates and cover similar content. The main difference between the two certifications is how they address the practical application of the knowledge that they deliver.

Both certifications cover cyber security theory, but in the case of the C)ISSO additional emphasis has been placed on the practical application of the theoretical principles described. Mile2 designed the C)ISSO for cyber security professionals who manage or are key players in their organization’s information security department, and the C)ISSO covers a broad range of actual implementation of these industry best practices, as well as the knowledge and skills expected of a security leader.

Key facts about Mile2:

• • Mile2 has a strong military connection. Their Certified Penetration Testing Engineer (CPTE) certification played a pivotal role in assisting the United States Air Force (USAF) improve their security protocols. This course was originally designed for the USAF.
  • Mile2’s certification courses are accredited by the National Security Agency (NSA) and Committee on National Security Systems (CNSS). They are also on the FBI’s Preferred Tier 1-3 certification training list for prospective FBI agents specializing in cyber crime.
  • CompTIA recognizes and acknowledges Mile2 courses as Expert Level, e.g. Mile2 CPTE.
  • Mile2 have their own IT Security Penetration Testing magazine called PenTest Magazine, which is published several times a year.
  • All Mile2 courses count as Continuing Education Units (CEUs) toward (ISC)2, ISACA, and SANS ongoing certification requirements.

Prerequisites:

Although there are no prerequisites to take the course or sit the exam, it is recommended prospective students have;

• • 5 years’ experience in 2 modules or
  • 5 years of experience in IS Management

Exam Information:

The Certified Information Systems Security Officer exam is taken online through Mile2’s Assessment and Certification System (“MACS”), which is accessible on your mile2.com account. The exam will take 2 hours and consist of 100 multiple choice questions. Further details about the exam are as follows:

• • All exams are immediately loaded in your Mile2 user account once you have enrolled
  • All Mile2 exams are taken on-line and can be taken anywhere 24/7 providing you have access to an internet connection and PC or laptop
  • All exams run for 2 hours and comprise of 100 questions with a passing score of 70%
  • There are NO prerequisites toward taking any Mile2 exam
  • Once you have passed your exam, you will instantly receive a digital copy of your certification

Accreditation & Acknowledgements

• ACCREDITED by the NSA CNSS 4011-4016
• MAPPED to NIST / Homeland Security NICCS’s Cyber Security Workforce Framework
• APPROVED on the FBI Cyber Security Certification Requirement list (Tier 1-3)