Information Systems Security Engineering Professional (CISSP - ISSEP) Practice Exam
description
Information Systems Security Engineering Professional (CISSP - ISSEP) Practice Exam
The Information Systems Security Engineering Professional (ISSEP) is a security expert who specializes in applying systems engineering principles and processes to develop secure systems practically. ISSEP professionals analyze organizational needs, define security requirements, design security architectures, develop secure designs, implement system security, and provide support for system security assessment and authorization for both government and industry sectors.
Exam Experience Requirements:
To qualify for the ISSEP certification, candidates must meet the following criteria:
- Hold a CISSP certification in good standing and possess at least two years of cumulative, full-time experience in one or more of the five domains outlined in the ISSEP curriculum, or
- Have a minimum of seven years of cumulative, full-time experience in two or more of the domains outlined in the ISSEP curriculum. Additionally, obtaining a post-secondary degree (bachelor's or master's) in computer science, information technology (IT), or related fields, or acquiring an additional credential from the ISC2 approved list, may fulfill one year of the required experience. Part-time employment and internships may also contribute to meeting the experience requirement.
Who should take the exam?
The ISSEP is ideal for those working in roles such as:
- Senior Systems Engineer
- Information Assurance Systems Engineer
- Information Assurance Officer
- Information Assurance Analyst
- Senior Security Analyst
Exam Details
- Exam Code: CISSP - ISSEP
- Exam Name: Information Systems Security Engineering Professional
- Exam Languages: English
- Exam Questions: 125 Questions
- Time: 3 hours
- Passing Score: 700 or 1000 points
Exam Course Outline
The Exam covers the given topics -
Domain 1: Systems Security Engineering Foundations 25%
1.1 Apply systems security engineering fundamentals
1.2 Execute systems security engineering processes
1.3 Integrate with applicable system development methodology
1.4 Perform technical management
1.5 Participate in the acquisition process
1.6 Design Trusted Systems and Networks (TSN)
Domain 2: Risk Management 14%
2.1 Apply security risk management principles
2.2 Address risk to system
2.3 Manage risk to operations
Domain 3: Security Planning and Design 30%
3.1 Analyze organizational and operational environment
3.2 Apply system security principles
3.3 Develop system requirements
3.4 Create system security architecture and design
Domain 4: Systems Implementation, Verification and Validation 14%
4.1 Implement, integrate and deploy security solutions
4.2 Verify and validate security solutions
Domain 5: Secure Operations, Change Management and Disposal 17%
5.1 Develop secure operations strategy
5.2 Participate in secure operations
5.3 Participate in change management
5.4 Participate in the disposal process