SSCP – Systems Security Certified Practitioner Training

🧩 1. Work Experience Requirement You must have at least one (1) year of cumulative, paid work experience in one or more of the seven SSCP domains of the (ISC)² Common Body of Knowledge (CBK): SSCP Domains: Security Operations and Administration Access Controls Risk Identification, Monitoring, and Analysis Incident Response and Recovery Cryptography Network and Communications Security Systems and Application Security

🧠 The 7 Domains of the SSCP CBK 1. Security Operations and Administration (≈16%) Covers the day-to-day management of security operations, policies, and procedures. Key topics: Security policies, standards, and procedures Security awareness and training Change and configuration management Auditing and compliance Asset management and system hardening Data classification and handling 2. Access Controls (≈15%) Focuses on managing who can access systems, data, and resources. Key topics: Identification, authentication, and authorization Access control models (RBAC, DAC, MAC, ABAC) Account management and privileges Access review and revocation Single Sign-On (SSO), MFA, and directory services 3. Risk Identification, Monitoring, and Analysis (≈15%) Teaches how to assess, monitor, and mitigate information security risks. Key topics: Risk management concepts and frameworks Threat modeling and vulnerability assessment Security controls and countermeasures Business continuity and disaster recovery basics Security auditing and monitoring tools 4. Incident Response and Recovery (≈13%) Focuses on preparing for, detecting, responding to, and recovering from security incidents. Key topics: Incident response lifecycle (Preparation → Detection → Recovery → Lessons Learned) Forensics basics Evidence collection and chain of custody Disaster recovery procedures Communication and escalation protocols 5. Cryptography (≈10%) Explains encryption techniques and their applications in securing information. Key topics: Symmetric and asymmetric encryption Hashing and digital signatures Public Key Infrastructure (PKI) Key management and lifecycle Cryptographic attacks and defenses 6. Network and Communications Security (≈16%) Covers how to secure network infrastructure and communication channels. Key topics: Network protocols and topologies Firewalls, VPNs, IDS/IPS Secure network design principles Wireless and cloud network security Network monitoring and troubleshooting 7. Systems and Application Security (≈15%) Focuses on securing operating systems, applications, and software environments. Key topics: System hardening and patch management Malware prevention and endpoint protection Application development security principles (SDLC) Database security Virtualization and cloud environment security 🎯 Training Course Objectives By the end of the SSCP training, learners will be able to: Apply operational security best practices Implement and manage access controls Detect and respond to incidents effectively Apply cryptographic techniques appropriately Secure networks, systems, and applications

Exam Name SSCP – Systems Security Certified Practitioner Exam Provider (ISC)² (International Information System Security Certification Consortium) Exam Type Multiple-choice questions Number of Questions 125 Question Format Multiple-choice (single best answer) Duration 4 hours Passing Score 700 out of 1000 points Exam Language English, Japanese, and others (based on location) Delivery Method Computer-based testing (CBT) via Pearson VUE

❌ No, the SSCP (Systems Security Certified Practitioner) course is not directly aligned with Splunk certification exams.

Exam Component Details Total Duration 4 hours (240 minutes) Number of Questions 125 multiple-choice questions Question Format Single best answer (multiple choice) Delivery Method Computer-based (at Pearson VUE testing centers) Passing Score 700 out of 1000 points Language Options English, Japanese, and others depending on region