Scroll to top button

CISSP Third Edition Pearson uCertify

ISBN : 9781644590102

Prepare for the ISC2 CISSP certification exam with the CISSP Third edition course and lab. The lab simulates real-world, hardware, software, and command-line interface environments and can be mapped to any text-book, course, or training. The course and lab completely cover all the objectives of the ISC2 CISSP certification exam and include topics such as Information and asset ownership; protect privacy, asset retention, data security controls, and more.

The vendor-neutral ISC2 CISSP certification is an ideal credential for those with deep technical and managerial competence to design, engineer, implement, and manage overall information security programs to protect organizations. The CISSP certification is created and managed by one of the most prestigious security organizations in the world and has several stated goals.

Glossary of terms
Pre Assessment Questions
Post Assessment Questions
Performance lab
Learn the real world skills using LiveLab.
Video tutorials
Get interactive learning videos with transcripts and voice-over.
Signify the duration of video tutorials in labs.

Videos and How To

uCertify course includes videos to help understand concepts. It also includes How Tos that help learners with how to accomplish certain tasks.

Video Lessons
Exam related FAQs
What are the prerequisites for this exam?

ISC2 has the following pre-requisites:

  • At least five years of cumulative, paid, full-time work experience.
  • In two or more of the eight domains of the (ISC)2 CISSP Common Body of Knowledge (CBK).
What is the exam registration fee? USD 699
Where do I take the exam? Pearson VUE
What is the format of the exam? Multiple choice questions and advanced innovative questions
How many questions are asked in the exam? The exam contains 100-150 questions.
What is the duration of the exam? 180 minutes
What is the passing score? 700

(on a scale of 0-1000)

What is the exam's retake policy?
  • A candidate may sit for CISSP exam up to three times within a 12-month period.
  • If a candidate does not pass the exam the first time, he/she may retest after 30 test-free days.
  • If a candidate does not pass the exam the second time, he/she may retest after an additional 90 test-free days.
  • If a candidate does not pass the exam the third time, he/she may retest after 180 test-free days from their most recent exam attempt.
What is the validity of the certification? Three years
Where can I find more information about this exam? To know more about the Pearson-CISSP-2018-complete, click here.
Which certification covers this exam?
What are the career opportunities after passing this exam? Security Auditor Director of Security Security Consultant IT Director/Manager Security Systems Engineer Chief Information Security Officer
  • The Goals of the CISSP Certification
  • The Value of the CISSP Certification
  • The Common Body of Knowledge
  • Steps to Becoming a CISSP
  • Facts About the CISSP Exam
  • About the CISSP Cert Guide, Third Edition
  • Security Terms
  • Security Governance Principles
  • Compliance
  • Legal and Regulatory Issues
  • Professional Ethics
  • Security Documentation
  • Business Continuity
  • Personnel Security Policies and Procedures
  • Risk Management Concepts
  • Geographical Threats
  • Threat Modeling
  • Security Risks in the Supply Chain
  • Security Education, Training, and Awareness
  • Review All Key Topics
  • Asset Security Concepts
  • Identify and Classify Information and Assets
  • Information and Asset Ownership
  • Protect Privacy
  • Asset Retention
  • Data Security Controls
  • Information and Asset Handling Requirements
  • Review All Key Topics
  • Engineering Processes Using Secure Design Principles
  • Security Model Concepts
  • System Security Evaluation Models
  • Certification and Accreditation
  • Control Selection Based upon Systems Security Requirements
  • Security Capabilities of Information Systems
  • Security Architecture Maintenance
  • Vulnerabilities of Security Architectures, Designs, and Solution Elements
  • Vulnerabilities in Web-Based Systems
  • Vulnerabilities in Mobile Systems
  • Vulnerabilities in Embedded Devices
  • Cryptography
  • Cryptographic Types
  • Symmetric Algorithms
  • Asymmetric Algorithms
  • Public Key Infrastructure
  • Key Management Practices
  • Message Integrity
  • Digital Signatures
  • Applied Cryptography
  • Cryptanalytic Attacks
  • Digital Rights Management
  • Site and Facility Design
  • Site and Facility Security Controls
  • Review All Key Topics
  • Secure Network Design Principles
  • IP Networking
  • Protocols and Services
  • Converged Protocols
  • Wireless Networks
  • Communications Cryptography
  • Secure Network Components
  • Secure Communication Channels
  • Network Attacks
  • Review All Key Topics
  • Access Control Process
  • Physical and Logical Access to Assets
  • Identification and Authentication Concepts
  • Identification and Authentication Implementation
  • Identity as a Service (IDaaS) Implementation
  • Third-Party Identity Services Integration
  • Authorization Mechanisms
  • Provisioning Life Cycle
  • Access Control Threats
  • Prevent or Mitigate Access Control Threats
  • Review All Key Topics
  • Design and Validate Assessment and Testing Strategies
  • Conduct Security Control Testing
  • Collect Security Process Data
  • Analyze and Report Test Outputs
  • Conduct or Facilitate Security Audits
  • Review All Key Topics
  • Investigations
  • Investigation Types
  • Logging and Monitoring Activities
  • Resource Provisioning
  • Security Operations Concepts
  • Resource Protection
  • Incident Management
  • Detective and Preventive Measures
  • Patch and Vulnerability Management
  • Change Management Processes
  • Recovery Strategies
  • Disaster Recovery
  • Testing Disaster Recovery Plans
  • Business Continuity Planning and Exercises
  • Physical Security
  • Personnel Safety and Security
  • Review All Key Topics
  • Software Development Concepts
  • Security in the System and Software Development Life Cycles
  • Security Controls in Development
  • Assess Software Security Effectiveness
  • Security Impact of Acquired Software
  • Secure Coding Guidelines and Standards
  • Review All Key Topics

Hands on Activities (Labs)

  • Setting Up Kerberos Delegation
  • Assigning Permissions to Folders
  • Taking Incremental Backup
  • Taking a Full Backup
  • Configuring RAID 5
  • Completing the Chain of Custody
  • Restricting Local Accounts
  • Using Windows Firewall
  • Configuring Linux Firewall Using Iptable 
  • Generating a Symmetric Key
  • Generating an Asymmetric Key
  • Encrypting the Disk
  • Encrypting a File or Folder
  • Using OpenSSL to Create a Public/Private Key Pair
  • Observing an MD5-Generated Hash Value
  • Observe an SHA-Generated Hash Value
  • Causing a DarkComet Trojan Infection
  • Using the John the Ripper Tool
  • Attacking a Website Using XSS Injection
  • Conducting a Cross-Site Request Forgery Attack
  • Using Social Engineering Techniques to Plan an Attack
  • Configuring Audit Group Policy 
  • Enabling Intrusion Prevention and Detection
  • Using Burp Suite
  • Configuring VLAN
  • Configuring a VPN
  • Using Ettercap for ARP Spoofing
  • Setting Up a Honeypot
  • Creating ACL (Access Control Lists) in Router
  • Configuring IPSec
  • Configuring Static Routing
  • Configuring Dynamic Routing
  • Configuring Static NAT
  • Configuring Dynamic NAT
  • Defending against IP Spoofing
  • Performing Session Hijacking Using Burp Suite
  • Configuring Extended Access Control List
  • Configuring User Access Control Settings in Windows
  • Creating ACL with Iptables
  • Creating a Password Policy in Windows
  • Creating a Password Policy in Linux
  • Reviewing an Authorization Letter for Penetration Testing
  • Using nmap for Scanning
  • Scanning Ports Using Metasploit
  • Exploiting Windows 7 Using Metasploit
  • Enabling a Keylogger in a Target Machine
  • Conducting Vulnerability Scanning Using Nessus
  • Configuring Snort
  • Exploiting a Website Using SQL Injection

Customer Testimonials

Jeremy green
uCertify course is very comprehensive it fully includes all 8 domains within the CISSP course as well as elements slightly outside. The course could prepare you enough to pass the exam and has everything you require to be successful. uCertify has certainly filled in my knowledge holes and made me much more prepared for a course and fully recommend it for anyone looking to take the ICS2 CISSP exam.
Michael C. Redmond
The CISSP course through is a good solution for studying at my own pace, and the course is well suited to identify what areas I need to study more for the test. The course starts out with a 300 question pre-exam that takes two hours. The student receives their score immediately and can review each questions correct answer, reinforcing the correct answers as part of the learning process.
Abraham Terhemen Adeke
uCertify CISSP 2018 course is very exciting because I had encounter new questions, the course is great and for sure it helps a lot on my exam preparation, thanks for giving me an opportunity to this kind of exam preparation. The course has covered every single detail that any CISSP student must know. More interesting thing I would like to specially mention is, "Even If you are an absolute beginner they have provided all the modules to make it easy to learn".