The CISSP test is designed to certify users who have a minimum of five years of professional experience in information security. The CISSP test covers implementing security policy, identifying security threats, and developing countermeasures using firewall systems and attack-recognition technologies. Before taking the CISSP test, you should practice the following:

  1. Implement network perimeter security and elements of an effective security policy.
  2. Implement encryption, including the three main encryption methods used in internetworking.
  3. Implement public key infrastructure and hashing function.
  4. Implement firewalls on the network.
  5. Understand firewall system planning, including levels of protection.
  6. Use tools to evaluate key security parameters, including techniques for security accounts.
  7. Implement system patches and fixes, including application of system patches.
  8. Audit security and assess network risk factor.

  9. Identify potential attacks and analyze audit and security logs.
  10. Restore data backup.
  11. Identify assets and manage them.
  12. Use risk management tools.
  13. Design secure data networks.
  14. Use access control methods and monitor access control.
  15. Implement remote access using dial-up, ISDN, DSL, and VPN with authentication protocols.