|
|
Title |
Duration |
|
|
|
Introduction to the SSCP Exam
This introductory training Nugget will cover the SSCP certification; possibilities, requirements, exam domains and tips for success.
|
00:08:33 |
|
|
|
Access Control (part 1)
Each of the SSCP certification exam domains is weighted equally and access control is the first of the seven domains. Access Control training part 1 will cover; the "Triad of Security", authentication, authorization, and accounting.
|
00:22:04 |
|
|
|
Access Control (part 2)
Access Control training part 2 will cover; why deploy access controls, preventive, detective and corrective controls, physical, technical and administrative controls and access control models.
|
00:25:07 |
|
|
|
Access Control (part 3)
Lets wrap up the Access Control training with part 3 of 3. This is the practical part of the access control topic and we will cover; token-based vs character-based, system level access controls, role-based access control and account-level and passwords.
|
00:34:01 |
|
|
|
Administration (part 1)
The next domain for the SSCP certification exam is administration. In this training video, we will cover the concepts of security administration. More to the point, we will talk about; security administration principles, classification of data, configuration management and the software development process.
|
00:32:24 |
|
|
|
Administration (part 2)
Time to talk concepts and that is what we will go through in this administration training video. Things like defining security policy, policy development cycle and developing policies and procedures.
|
00:20:49 |
|
|
|
Administration (part 3)
Ready for practical? Great, this training Nugget will cover practical security administration. Topics; system security architecture, distributed architecture, protection mechanisms and security control infrastructure.
|
00:34:30 |
|
|
|
Auditing and Monitoring (part 1)
The third domain in the SSCP certification exam to talk about is Auditing and Monitoring. This training video will cover the concepts of; auditing, monitoring and reporting.
|
00:14:51 |
|
|
|
Auditing and Monitoring (part 2)
Auditing and Monitoring training part 2 will cover; components to audit, data to collect during an audit, monitoring, intrusion detection and reporting mechanisms.
|
00:31:05 |
|
|
|
Auditing and Monitoring (part 3)
This training video will finish out the SSCP certification exam domain of auditing and monitoring. We will discuss auditing specifics like; firewall examples, database server examples and user workstation examples. We will also talk about performing a security review.
|
00:31:42 |
|
|
|
Cryptography (part 1)
Domain 4 for the SSCP certification exam is Cryptography. This training Nugget video will go through the concepts of Cryptography like; the definition of cryptography, cryptography and security goals and terminology and concepts.
|
00:23:46 |
|
|
|
Cryptography (part 2)
Time for some method to the madness. This training video will cover the SSCP certification Cryptography methodology, such as; symmetric vs asymmetric, cipher types, secret key crypto systems, public key systems and common crypto attacks.
|
00:28:01 |
|
|
|
Cryptography (part 3)
Our Cryptography training for the SSCP certification exam will close with covering; public key infrastructure, virtual private networking and IPSec.
|
00:36:59 |
|
|
|
Data Communications (part 1)
Let us communicate. By that I mean we will begin the Data Communication training, which is the fifth domain for the SSCP certification exam. We will cover the ISO/OSI model and the 7 layers.
|
00:41:18 |
|
|
|
Data Communications (part 2)
Part 2 of the Data Communication training by covering; network cabling, LAN topologies, WAN technologies and remote access technologies.
|
00:39:11 |
|
|
|
Data Communications (part 3)
The third part of Data Communication training covers; remote access security, secure communications, authentication systems and attacks and countermeasures.
|
00:34:08 |
|
|
|
Malware (part 1)
SSCP certification exam preparation, domain 6 or Malware. Training on this first part of three Nuggets covering Malware, will cover concepts; hackers, crackers and phreaks, attack methods, attack categories and concepts and defining malicious code.
|
00:24:35 |
|
|
|
Malware (part 2)
ATTACK! This training Nugget will cover attacks like; reconnaissance, access, DOS and malicious code/malware.
|
00:34:38 |
|
|
|
Malware (part 3)
Time for your Malware training for the SSCP certification to cover counter measures. We will discuss; strong AAA services, firewall(s), cryptographic mechanisms, intrusion detection services and anti-malware tools.
|
00:27:50 |
|
|
|
Risk, Response, and Recovery (part 1)
Domain 7 of the SSCP certification exam is Risk, Response and Recovery. RRR training begins with the first R or Risk and will cover; risk definition, elements of risk management, risk analysis and risk assessment steps.
|
00:33:43 |
|
|
|
Risk, Response, and Recovery (part 2)
The second R to cover for the SSCP certification exam is Response. This training video will go through; response defined, types of security incidents, steps to incident response and incident response lifecycle.
|
00:17:19 |
|
|
|
Risk, Response, and Recovery (part 3)
Recovery or the final R of the RRR in this SSCP exam domain will be the topic of this training Nugget. Topics; recovery defined, contingency planning, disaster recovery planning, continuity of ops planning, business continuity planning.
|
00:34:31 |
|
|
|
Intro to SSCP Update and Access Control
This introductory training Nugget to the SSCP Update series first explains the need for the update; next you will review the certification and exam followed buy a survey of the topics in this update series. The intro is followed by coverage of the first domain: Access Control. We will first review all of the major terms and concepts to remember from the original series that are on the new exam. Finally, you will learn about Access Control Models like Biba and Clark-Wilson; centralized access control with TACACS+, RADIUS, DIAMETER, and Kerberos; and 802.1X and Single-Sign-on (SSO).
|
00:27:17 |
|
|
|
Security Administration, Auditing, and Monitoring
This training video addresses the concepts of administrative principles, phases, and tasks. We will expand on the security system lifecycle as well. You will learn about system security architecture as well as methodologies for auditing, reporting, and monitoring.
|
00:32:53 |
|
|
|
Risk Management and Disaster Recovery
Here is a survey of the main concepts to review from the original series along with some new exam content. New topics include: risk analysis approaches, types of attacks, steps to take during an investigation, and types of evidence.
|
00:24:08 |
|
|
|
Cryptography
In this update we will first revisit and extend our knowledge of the DES, 3DES, and AES cryptographic algorithms. You will also learn about other cryptosystems such as IDEA, CAST, SAFER, and Blowfish. The topics of email security and Internet security round out this update nugget.
|
00:23:32 |
|
|
|
Data Communication and Malware
This module also starts out looking at key points to know for the new exam. You will also review the IEEE 802 standards covered on the exam as well. You will explore the several different types of firewalls and how they provide countermeasures against different forms of malware. Finally I will leave you with my best practices for passing the new SSCP exam.
|
00:19:18 |
