SSCP Training & Examination Information

Source: (ISC)²

Introduction

Global Recognition for Information Security Practitioners

The Systems Security Certified Practitioner (SSCP®) credential offers information security tacticians, with implementation orientations, the opportunity to demonstrate their level of competence with the seven domains of the compendium of best practices for information security, the (ISC)² SSCP CBK®.

 

SSCP Common Body of Knowledge (CBK) Domains

Domain 1 – Access Control

Policies, standards and procedures that define who users are, what they can do, which resources they can access, and what operations they can perform on a system.

Domain 2 - Administration

Identification of information assets and documentation of policies, standards, procedures and guidelines that ensure confidentiality, integrity and availability.

Domain 3 - Audit & Monitoring

Determining system implementation and access in accordance with defined IT criteria. Collecting information for identification of and response to security breaches or events.

Domain 4 - Cryptography

The protection of information using techniques that ensure its integrity, confidentiality, authenticity and non-repudiation, and the recovery of encrypted information in its original form.

Domain 5 - Data Communications

The network structure, transmission methods and techniques, transport formats and security measures used to operate both private and public communication networks.

Domain 6 - Malicious Code / Malware

Countermeasures and prevention techniques for dealing with viruses, worms, logic bombs, Trojan horses and other related forms of intentionally created deviant code.

Domain 7 - Risk, Response & Recovery

The review, analysis and implementation processes essential to the identification, measurement and control of loss associated with uncertain events.