ISC² – Certified In Cybersecurity

Course Level: Beginner
Duration: 5 Hrs 36 Min
Total Videos: 87 On-demand Videos

Gain an in-depth understanding of cybersecurity principles and practices with the ISC² Certified in Cybersecurity course. Perfect for aspiring cybersecurity professionals or IT experts looking to expand their knowledge, this course provides comprehensive, real-world training in risk management, network security, incident response and more, preparing you for the ISC² CC certification exam and a rewarding career in cybersecurity.

Get Access To Every Vision Training Course

Learning Objectives

01

Understand fundamental security concepts, risk management processes, and the ISC2 Code of Ethics.

02

Distinguish between different types of security controls: technical, administrative, and physical.

03

Grasp Business Continuity and Disaster Recovery concepts, and learn how to construct response plans.

04

Identify key components of a Business Continuity Plan and understand the importance of RTO-RPO.

05

Understand and apply physical and logical access control concepts, including Defense in Depth.

06

Comprehend computer networking and network security design, with an emphasis on identifying threats.

07

Explore Data Security fundamentals, including encryption, data handling best practices, and compliance.

08

Learn about System Hardening, Configuration Management, and the implementation of effective security policies.

Course Description

Embark on an enlightening journey into the world of cybersecurity with our comprehensive ISC(2) Certified in Cybersecurity (CC) course. This course is meticulously designed to equip you with the knowledge and skills you need to excel in the cybersecurity field and pass the ISC(2) CC certification exam with flying colors. Dive headfirst into key areas of cybersecurity, including risk management, incident response, access control, network security, and security operations, all presented through practical real-world examples and demonstrations. Our in-depth training leverages the power of AWS, providing you with a hands-on understanding of how to implement cybersecurity measures in various environments.

This course is perfect for both beginners venturing into the world of cybersecurity and seasoned IT professionals looking to bolster their skills and knowledge. As you learn to master security controls, understand the risk management process, implement password security, and explore multifactor authentication (MFA), you’ll be building a solid foundation for a rewarding career in cybersecurity. Network security design, protocols, and cloud architecture are just some of the advanced topics you’ll delve into, preparing you to face and overcome the challenges of today’s dynamic cybersecurity landscape. By the end of this course, you’ll not only be ready to pass the ISC(2) CC certification exam, but you’ll also possess a practical, applicable understanding of cybersecurity principles and practices.

Enroll in our ISC(2) Certified in Cybersecurity (CC) course today and open doors to a wide range of career opportunities in the rapidly growing field of cybersecurity. With the knowledge and skills you acquire, job roles such as Cybersecurity Analyst, Information Security Specialist, Network Security Administrator, Incident Response Coordinator, and Risk Management Analyst will all be within your reach. Equip yourself with the power of knowledge and skill and step into the future of cybersecurity with confidence.

Who Benefits From This Course

  • IT professionals interested in enhancing their knowledge in cybersecurity
  • Individuals aspiring to become certified cybersecurity specialists
  • System administrators seeking to understand and implement advanced security measures
  • Network engineers focused on secure network design and threat prevention
  • Business continuity and disaster recovery professionals
  • Data management professionals interested in data security best practices
  • Enterprise architects working with cloud infrastructure and services
  • Security consultants interested in understanding the ISC2 Code of Ethics
  • Individuals responsible for enforcing security policies within their organizations
  • Professionals involved in security awareness training

Frequently Asked Questions

What are the fundamental principles of risk management in cybersecurity?

Risk management is a critical aspect of cybersecurity that involves identifying, assessing, and mitigating risks to protect information systems and data. The fundamental principles of risk management in cybersecurity include:

  • Identification of Assets: Recognizing what data, systems, and resources need protection is the first step. This includes hardware, software, and information assets.
  • Threat Assessment: Evaluating potential threats that could exploit vulnerabilities. This includes both internal threats (like employee negligence) and external threats (such as cyberattacks).
  • Vulnerability Assessment: Identifying weaknesses in the systems that could be targeted by threats. Regular vulnerability scans and penetration testing help in this process.
  • Risk Analysis: Determining the likelihood and potential impact of identified risks. This typically involves qualitative and quantitative analysis methods.
  • Mitigation Strategies: Developing and implementing strategies to manage risks, which can include implementing security controls, training staff, and developing incident response plans.
  • Monitoring and Review: Regularly reviewing and updating the risk management process to adapt to new threats and changes in the organizational environment.

By mastering these principles during the ISC(2) Certified in Cybersecurity (CC) course, you can build a robust framework for managing cybersecurity risks effectively in your organization.

How does multifactor authentication (MFA) enhance security in cybersecurity?

Multifactor authentication (MFA) significantly enhances security by adding an additional layer of verification to the login process. Unlike traditional username and password systems, MFA requires users to provide two or more verification factors to gain access to a system, making unauthorized access much more difficult. Here’s how MFA contributes to enhanced security:

  • Multiple Verification Layers: MFA typically combines something you know (password), something you have (a smartphone app or hardware token), and something you are (biometric verification), making it harder for attackers to compromise all factors.
  • Reduced Risk of Phishing Attacks: Even if a user’s password is compromised through phishing, the attacker would still need the second or third factor, which they are unlikely to possess.
  • Protection Against Credential Theft: MFA mitigates the risks associated with stolen credentials, as access without the additional factors is not possible.
  • Increased User Awareness: Implementing MFA often encourages users to be more vigilant about their account security, leading to better overall security hygiene.
  • Compliance with Regulations: Many industries require MFA as part of their regulatory compliance, which means implementing MFA can help organizations meet legal requirements.

Through the ISC(2) Certified in Cybersecurity (CC) course, learners will gain a comprehensive understanding of MFA and how to effectively implement it to secure their environments against unauthorized access.

What are the best practices for network security design in cybersecurity?

Network security design is crucial for safeguarding an organization’s assets and ensuring data integrity. Best practices for effective network security design include:

  • Segmentation: Divide the network into smaller segments to contain potential breaches and limit lateral movement of threats.
  • Implement Firewalls: Use firewalls to control incoming and outgoing traffic based on predetermined security rules, acting as a barrier between trusted and untrusted networks.
  • Intrusion Detection and Prevention Systems (IDPS): Deploy IDPS to monitor network traffic for suspicious activity and take action when potential threats are detected.
  • Encryption: Encrypt sensitive data in transit and at rest to protect it from unauthorized access and ensure confidentiality.
  • Access Control: Implement strict access controls, ensuring only authorized personnel can access critical systems and data, using role-based access control (RBAC) where appropriate.
  • Regular Updates and Patch Management: Keep all software, hardware, and firmware up to date to protect against vulnerabilities that can be exploited by attackers.
  • Employee Training: Educate employees on security policies, practices, and the importance of maintaining a secure network environment.

By understanding and applying these best practices, learners in the ISC(2) Certified in Cybersecurity (CC) course can design networks that are resilient against the evolving threats in the cybersecurity landscape.

What role does incident response play in cybersecurity, and what are its key components?

Incident response is a critical process in cybersecurity that involves preparing for, detecting, responding to, and recovering from cyber incidents. The key components of an effective incident response include:

  • Preparation: Establishing and training an incident response team, creating an incident response plan, and ensuring necessary tools and resources are in place.
  • Detection and Analysis: Identifying potential security incidents through monitoring and alerting systems, followed by a thorough analysis to understand the nature and scope of the incident.
  • Containment: Implementing strategies to limit the impact of the incident while ensuring that evidence is preserved for investigation.
  • Eradication: Removing the cause of the incident, such as malware or unauthorized access, from the environment, ensuring that vulnerabilities are addressed.
  • Recovery: Restoring affected systems and services to normal operations while ensuring that security measures are strengthened to prevent the recurrence of similar incidents.
  • Post-Incident Review: Conducting a retrospective analysis to evaluate the response process, identify lessons learned, and improve future incident response efforts.

Understanding these components is essential for anyone pursuing the ISC(2) Certified in Cybersecurity (CC) certification, as effective incident response can significantly mitigate damage and help organizations recover from cyber threats.

What common misconceptions exist about cybersecurity, and why is it important to address them?

Cybersecurity is often misunderstood, leading to several misconceptions that can jeopardize an organization’s security posture. Addressing these misconceptions is vital for fostering a strong culture of cybersecurity awareness. Some common misconceptions include:

  • Cybersecurity is solely the IT department’s responsibility: While IT plays a crucial role, cybersecurity is a shared responsibility that involves all employees. Everyone should be aware of security best practices.
  • Only large organizations are targets for cyberattacks: Cybercriminals often target small and medium-sized businesses, believing they have weaker security measures in place.
  • Compliance equals security: Meeting regulatory compliance does not guarantee complete security. Organizations must continually assess and improve their security measures beyond compliance standards.
  • Antivirus software provides complete protection: While antivirus software is essential, it is just one layer of defense. A comprehensive cybersecurity strategy should include multiple layers of protection.
  • Cybersecurity is a one-time effort: Cybersecurity is an ongoing process. Organizations need to continuously update their security measures and conduct regular training and assessments.

By addressing these misconceptions through the ISC(2) Certified in Cybersecurity (CC) course, learners will be better equipped to foster a proactive security culture and understand the multifaceted nature of cybersecurity.

Included In This Course

Module 1 - Introduction and Security Concepts

  •    Certification Overview
  •    Exam Objectives
  •    Instructor Introduction
  •    ISC CiC Course Intro
  •    1.0 Module 1 Overview
  •    1.1.5 Password Security
  •    1.1.6 Whiteboard - Multifactor Authentication (MFA)
  •    1.2 Understand the risk management process
  •    1.2.1 Risk Management
  •    1.2.2 Risk Identification assessment and treatment
  •    1.3 Understand security controls
  •    1.3.1 Technical Controls
  •    1.3.2 Administrative Controls
  •    1.3.3 Physical Controls
  •    1.3.4 Whiteboard Discussion - Controls-
  •    1.3.5 Demonstration - AWS Access Controls
  •    1.4 - Understand ISC2 Code of Ethics
  •    1.4.1 Professional Code of Ethics
  •    1.5 Understand Governance processes
  •    1.5.1 Standards, Regulations, etc
  •    1.5.2 Security Policies
  •    1.5.3 Module Summary Review
  •    1.5.4 Module Review Questions

Module 2 - Incident Response, Business Continuity and Disaster Recovery Concepts

  •    2.0 Module 2 Overview
  •    2.1 Understand Business Continuity
  •    2.1.1 Business Continuity
  •    2.1.2 Components of a Business Continuity Plan
  •    2.2.1 Disaster Recovery
  •    2.2.2 RTO-RPO
  •    2.3 Understand Business Response
  •    2.3.1 Incident Response
  •    2.3.2 Post Incident Review
  •    2.3.3 Module Summary Review
  •    2.3.4 Module Review Questions

Module 3 - Access Control Concepts

  •    3.0 Module 3 Overview
  •    3.1 Understand physical access controls
  •    3.1.1 Defense In Depth
  •    3.1.2 Compare Physical Control Types
  •    3.1.3 Monitoring Controls
  •    3.2 Describe logical access controls
  •    3.2.1 Logical Access controls
  •    3.2.2 Principle of least privilege
  •    3.2.3 Segregation of duties
  •    3.2.4 Whiteboard - Access Control
  •    3.2.5 Demonstration - Cloud IAM Sequence 32
  •    3.2.6 Module Summary Review
  •    3.2.7 Module Review Questions

Module 4- Network Security

  •    4.0 Module 4 Overview
  •    4.1 Understanding computer networking
  •    4.1.1 Network Security Design
  •    4.1.2 Whiteboard - Networking Concepts
  •    4.1.3 Networking protocols and ports
  •    4.1.4 Demonstration - AWS VPC
  •    4.2 Understand Network Threats
  •    4.2.1 Types of network (cyber) threats and attacks
  •    4.2.2 Threat Actors
  •    4.2.3 Tools used to identify and prevent threats
  •    4.2.4 Whiteboard Discussion - DDoS attacks
  •    4.3 Network Security Infrastructure
  •    4.3.1 On Premises Architecture
  •    4.3.2 Data Center Design Discussion
  •    4.3.3 Cloud Architecture Service and Deployment Models
  •    4.3.4 Managed Service Providers
  •    4.3.5 Service Level Agreements (SLA)
  •    4.3.6 Shared Security Model
  •    4.3.7 Zero Trust
  •    4.3.8 Module Summary Review
  •    4.3.9 Module Review Questions

Module 5 - Security Operations

  •    5.0 Module 5 Overview
  •    5.1 Understand Data Security
  •    5.1.1 Data Security Fundamentals
  •    5.1.2 Data Handling Best Practices
  •    5.1.3 Encryption
  •    5.1.4 Data Security Compliance
  •    5.2 Understand System Hardening
  •    5.2.1 System Hardening
  •    5.2.2 Configuration Management
  •    5.3 Understanding Best Practice Security Policies
  •    5.3.1 Common Security Policies
  •    5.3.2 Demonstration - AUP
  •    5.3.3 Demonstration - Privacy Policy
  •    5.4 Security Awareness Training
  •    5.4.1 Importance of Security Awareness Training
  •    5.4.2 Social Engineering
  •    5.4.3 Module Summary Review
  •    5.4.4 Module Review Questions
  •    5.4.5 Next Steps and Course Closeout

Vision What's Possible

Vision Your Best Career
365
Price: $139 / YEAR

Gain unlimited access to our comprehensive IT training library featuring top certifications like CompTIA, Cisco, Microsoft, AWS, and more. Explore expert-led courses in cybersecurity, networking, cloud computing, project management, and soft skills development—all designed to help you build real-world, job-ready skills. With the 365 Training Pass, you can start learning today and accelerate your path to a successful IT career.

Sign Up for my 365 access pass today
  • 855-488-5327
  • customerservice@visiontrainingsystems.com

Navigate With Us

Vision What’s Possible
Join today for over 50% off