Track: Information Security Engineers & Managers - CISO, Inc. CISSP & CISM Preparation

CISO course (Chief Information Security Officer and Information Security engineer track) is the first and most advanced in Israel and may well be the most advanced in the world.

The CISSP qualification covers one part of the Information Security field, while the CISM qualification covers another. The CISO Track covers both of them, and in addition, its covers also CEH certification’s knowledge as well. This is the most comprehensive course offered to executive, engineering and advisory positions dealing with this domain.

The training course was established seven years ago for the Ministry of Defense, however it was "civilianized" in collaboration with members IFIS (the Israeli Forum of Information Security), mostly Information Security officers of leading organizations, leading technologists, defense system personnel and members of Israeli government agencies. This was done while taking into account the various regulatory entities around the world (i.e. USA-NSA, UE, ISC2, ISACA) and official and semi-official such entities in Israel including the ILITA (the Israeli Law, Information and Technology Authority), NISA (Israel National Information Security Authority), SII (the Standard Institute of Israel), Supervisor of Banks in the Bank of Israel, Superintendent of Insurance and Capital Reserves in the Ministry of Finance and the Ministry of Health.

The CISO Information Security Management course hosts some 40 writers who are IFIS members, 8 senior IFIS members who are core speakers and 12 guest speakers (about half take part in any given round.)

There are over 400 graduates in Israel who have found employment in most of the data security consultant companies, in large-scale information security organizational departments, IT units in small-scale organizations and senior positions in the defense system.

Scope of the program:

The CISO Information Security Manager course extends over 280 hours in class subject and approximately 340 hours in home duties.

You may download the course's complete syllabus from CISO Information Security Management and Engineering course

Here you can download the file: Recommending the CISO course

Purpose of the program:

Acquisition of extensive and profound knowledge as well as management tools in the realm of organizational information system security (technical and managerial) in order to reach a high level of expertise in Information Security and assumption of executive and professional responsibility in the area of business risks.

It is intended for those wishing to take the CISSP, CISM or CEH exams.

Target audience:

1. Applicants should have infrastructure-related practical expertise with operating systems and communications as well as basic knowledge of rudimentary security tools.)
   Software developers.
2. Holders of Bachelor of Master's degree in computer science, software engineering or hardware engineering.
3. People with background in at least one of the Information Security domains.

The benefits of the CISO Information Security Management course:

• The course is based on a professional and specified plan manifested in a solid matrix of Information Security professions over Information Security fields of expertise.
• Is it directed only at the top tier of the security professions as a de facto standard of Information Security studies for the following professions:

          1. ISSE - Information Systems Security Engineer,
          2. CISO - Chief Information Security Officer
          3. ISSO - Information גSystems Security Officer

• It covers all five realms of Information Security:

          1. Infrastructure Hardening as well as Code and Application 
              Security
          2. Engineering and architecture - Information Security tools
              and technology
          3. Hacking & Cyber Warfare
          4. Legal and regulatory management of the Information 
              Security world
          5. Management, Organization and Methods of the Information
              Security manager

• The knowledge for the content of the course is derived from ISO, IEC, NIST, NSA, ISC2, Gartner Group, ISACA, SII, and IFIS.
• The course requires meeting clear and correct prerequisites.
• The course structure is based on many years of didactic and pedagogic experience accumulated in 20 consecutive classes.
• The course was designed, structured and constantly updated and controlled by a full range of Information Security professionals:

          1. In the relevant sections, by CISOs of fifty leading Israeli
             organizations.
          2. In the hacking sections, by leaders of this sector in Israel, 
              including members of the defense system.
          3. In the technology sections, professionals coming from 
              market leading software providers and systems as well
              as from outstanding customers, including members of
              the defense system.

• The course consists of 700 study and (mandatory) tutoring hours, out of which 280 are held in class subject.
• It is structured on rich literature and training kits as well as transparency kits.
• Acknowledged by the Ministry of Defense and its branches.
• It is a profound and qualitative preparation for those wishing to qualify as CISSP or CISM.
• Graduates of the course are positioned in the best Information Security departments in the commercial and defense sector as well as in most Information Security consulting companies in Israel.
• The curriculum may be delivered within a three-year course.

* The course does not suit training of ISSI - Information Systems Security Integrator.

Practical work in the Chief Information Security Officer and Engineer training program

Information Security is a technological program that cannot be studied by employing reading and memorizing.
Alongside the textbook, it requires a great deal of practice and experience, as well as creativity that by nature is a result of practice and exposure to various situations.

The program involves daily class subject level and on-going course level exercises. One of the on-going exercises practices designing an organizational security formation. Beginning on day-1 of the course, the exercise requires the student to design a security formation based on the his basic knowledge. As the student proceeds and advances into the course, he is required to delve deeper into matters and improve the formation he has proposed matching the material learned and the newly acquired insights.

At the end of the training course, upon the conclusion of the management course, the student will be required to adjust his outline of the organizational defense plan to comply with the ISO 27000 family of international Information Security standards, and accordingly to the constraints resulting from the business needs of the organization which is the basis of this exercise.

Textbooks used during the Information Security training program

The curriculum consists of several class subjects, each accompanied by a textbook developed by the See Security College.

The textbooks are, as their name implies, fully textual. Every chapter, subject and particular class subject has its didactic structural requirements including an introduction, reaching an preset accomplishment, content for frontal tutoring, exercise content and structure, feedback and reviewing of its results, class-based examination, recommended home duties and further readings. (documentation based of transparencies is not part of the curricula.)