Enterprise Risk Services
The Deloitte Official (ISC) CISSP 2
Common Body of Knowledge Review Course and Exam
Enterprise Risk Services The Deloitte Official (ISC)2 CISSP
Common Body of Knowledge Review Course and Exam Osman Bing Satrio & Rekan (a member of “Deloitte Touche Tohmatsu”) in collaboration with Deloitte & Touche Canada Office, the Center for Risk Intelligence, and the official International Information System Security Certification Consortium (ISC)² Education Affiliate, is pleased to offer this security certification preparation course. Certified Information Systems Security Professional (CISSP) is considered the “Gold Standard” credential to demonstrate that you possess the necessary knowledge, skills and abilities for competent practice of information security. The course will be using official (ISC)² training material and curriculum, and will be conducted by John Berti, the certified (ISC)2 instructor from Deloitte & Touche Canada Office. About the CISSP CBK Review Course The Deloitte Official (ISC)2 CISSP Common Body of Knowledge Review course is the most complete review course discussing the entire information system security Common Body of Knowledge (CBK). Developed by (ISC)², the CBK is a compilation and distillation of all security information collected internationally of relevance to Information System Security professionals. This review serves as an excellent foundation for learning the concepts, topics and standards of the CBK, as well as preparing for the CISSP exam. Through this course, participant is able to obtain essential security knowledge that can be immediately used to competently handle security threats and to improve the organizational security properly. Each participant will also receive the official (ISC)2 curriculum and seminar materials. Course Outline Topics covered in the 5-day program include the following: • • •
Access Control This domain addresses the collection of mechanisms that permits managers of a system to exercise a directing or restraining influence over the behavior, use and content of a system. Application Security This domain addresses the controls that are included within systems and applications software and the steps used in their development. Business Continuity and Disaster Recovery Planning This domain addresses the preservation of the business in the face of major disruptions to normal business operations, involving preparation, testing and updating of specific actions to protect critical business processes from the effect of major system and network failures. Cryptography This domain addresses the principles, means and methods of disguising information to ensure its integrity, confidentiality and authenticity. Information Security and Risk and Management This domain addresses the identification of an organisation’s information assets and the development, documentation and implementation of policies, standards, procedures and guidelines that ensure confidentiality, integrity and availability.
Enterprise Risk Services The Deloitte Official (ISC)2 CISSP
• • •
Legal, Regulations, Compliance and Investigations This domain addresses computer crime laws and regulations; the investigate measures and techniques which can be used to determine if a crime has been committed, methods to gather evidence if it has, as well as the ethical issues and code of conduct for the security professional. Operations Security This domain addresses the controls over hardware, media and the operators with access privileges to any of these resources. Physical (Environmental) Security This domain addresses the threats, vulnerabilities and countermeasures that can be utilized to physically protect an enterprise’s resources and sensitive information. Security Architecture and Design This domain addresses the concepts, principles, structures and standards used to design, implement, monitor and secure, operating systems, equipment, networks, applications and those controls used to enforce various levels of confidentiality, integrity and availability. Telecommunications and Network Security This domain addresses the network structures, transmission methods, transport formats and security measures used to provide integrity, availability, authentication, and confidentiality for transmissions over private and public communication networks and media.
Exam Certification On the 6th day of the program, participants have the option of sitting for the CISSP Certification Exam. The exam is 6 (six) hours in length and consists of 250 multiple-choice questions, each having four possible answers, with one being the most correct answer. The exam will start at 8.00 am for registration and instruction. An independent exam proctor and supervisor from (ISC)2 will administer the exam. Candidates All information security professionals who wish to master the world’s best practices and validate a broad understanding of management and technical competency in information security. Dates & Times The CBK Review Course will be conducted from October 20-24, 2008; with CISSP certification exam takes place on October 25, 2008. The course will start at 8.00 am and ends at 5.00 pm each day. Course Location The course will be held at the following location: Hotel Nikko Jakarta Jalan MH Thamrin 59 Jakarta 10350 Indonesia Ph : (62-21) 230 1122 Fax: (62-21) 314 3631 http://www.nikkojakarta.com/ There is a corporate rate available with the Hotel at IDR 800,000* per night inclusive of breakfast. All participants are recommended to stay in the Hotel in order to avoid traffic. The hotel is conveniently located in the heart of Jakarta’s central business, shopping and entertainment district with close proximity to major embassies and shopping centers. It is 45 minutes away from the Soekarno-Hatta International Airport. *room rates are subject to change without prior notice
Enterprise Risk Services The Deloitte Official (ISC)2 CISSP
Facilitator John Berti is the Senior Manager from the Global Security Services practice of Deloitte & Touche LLP of Canadian office. He is the Top Senior Master Lead Instructor – Common Body of Knowledge Review Seminar for the (ISC)2 John bringing over 18 years experience in the field, a wealth of global experience and a passion for teaching. John brings the skills, knowledge and dedication to learning that have helped his participants enjoy an over 90% exam success rate. John has facilitated more than 100 seminars worldwide and quite literally wrote the book on CISSP exam preparation. He is also co-authored the best-selling CISSP exam preparation guide, Official (ISC)2 Guide to the CISSP Exam. Course Fee The course fee is IDR 10,000,000 (excluding VAT) per person with an additional US$ 550 for those who choose to take the exam. Lunch and Coffee Breaks are provided for the 6 days of the course and exam. Additional Meals, air and ground transportation, accommodation are the responsibility of the participant. Terms and Conditions • •
Registration is accepted on “first come first serve” basis and Osman Bing Satrio & Rekan has the rights to decline the registration based on capacity. Cancellation made with more than 1 month notice would result in no fee imposed, otherwise a cancellation fee of 20% from the course fee will be charged to the participant.
If you are interested in joining the course, please fill up the attached registration form and return it by e-mail to email@example.com For more information, please contact: Budinata Rahardja Partner firstname.lastname@example.org +62 21 231 2879 ext 3125 Ibnu Tatang Director email@example.com +62 21 231 2879 ext 3370 Michael Sargent Director firstname.lastname@example.org +62 21 231 2879 ext 5119
Deloitte provides audit, tax, consulting, and financial advisory services to public and private clients spanning multiple industries. With a globally connected network of member firms in 140 countries, Deloitte brings world-class capabilities and deep local expertise to help clients succeed wherever they operate. Deloitte’s 165,000 professionals are committed to becoming the standard of excellence. Deloitte’s professionals are unified by a collaborative culture that fosters integrity, outstanding value to markets and clients, commitment to each other, and strength from cultural diversity. They enjoy an environment of continuous learning, challenging experiences, and enriching career opportunities. Deloitte’s professionals are dedicated to strengthening corporate responsibility, building public trust, and making a positive impact in their communities. Deloitte refers to one or more of Deloitte Touche Tohmatsu, a Swiss Verein, and its network of member firms, each of which is a legally separate and independent entity. Please see www.deloitte. com/about for a detailed description of the legal structure of Deloitte Touche Tohmatsu and its member firms. In Indonesia, Osman Bing Satrio & Rekan is the member firm of Deloitte Touche Tohmatsu, and services are provided by Osman Bing Satrio & Rekan and its affiliates (Deloitte Tax Solutions and PT Deloitte Konsultan Indonesia). Osman Bing Satrio & Rekan is part of Deloitte Southeast Asia which is a cluster of member firms operating in seven countries: Guam, Indonesia, Malaysia, the Philippines, Singapore, Thailand and Vietnam. Deloitte Southeast Asia was established to deliver measurable value to the particular demands of its increasingly intra-regional and fast growing companies and enterprises. With a team of over 185 partners and 4,000 professionals located in 20 offices, Deloitte Southeast Asia specialists combine their technical expertise and deep industry knowledge across four professional areas—audit, tax, consulting, and financial advisory services— and deliver consistent high quality services to companies in the region. ©2008 Osman Bing Satrio & Rekan. All rights reserved.
Member of Deloitte Touche Tohmatsu
The Deloitte Official (ISC)2 CISSP CBK review course registration form SECTION 1: REGISTRATION DETAILS Last Name/Surname: ________________________________ Salutation: Mr / Miss / Mrs First Name / Given: _______________________________________ Middle Name: _______________________________ Sending Office: ____________________________________ Position: _________________________________________ Service Line: ______________________________________ Office Address: ______________________________________________________________________________________ City: __________________________ Postal Code: __________________ Country: _______________________________ E-mail : ___________________________ Office Phone ____________________ Mobile Phone ______________________ SECTION 2: COURSE & ACCOMODATION DETAILS I wish to join the following course: 5 days course without Exam
5 days course with Exam
(Fee: IDR 10,000,000 excluding VAT)
(Fee: IDR 10,000,000 excluding VAT + US$ 550)
I wish to stay at the following hotel during my course: Nikko Hotel (IDR 800.000,- per night including breakfast)*
Other Hotels (participant own arrangement)
*rate is subject to change without prior notice SECTION 3: TERM OF PAYMENT Payment is due at the time of registration. Payment may be made by transfer to the following account: Osman Bing Satrio & Rekan Bank Panin Sawah Besar Jl. Sukarjo Wiryopranoto 2 R Jakarta Pusat A/C No. 144 501 9971 for IDR transfer A/C No. 144 600 4788 for US$ transfer Upon payment, please send the transfer receipt via e-mail to email@example.com for administration. SECTION 4: AGREEMENT AND DISCLAIMERS By registering for the Deloitte Official (ISC)2 CISSP Common Body of Knowledge Review course, I hereby affirm that I understand, acknowledge and agree to the following: • Registration is accepted on “first come first serve” basis and Osman Bing Satrio & Rekan has the rights to decline the registration based on capacity. • Cancellation made with more than 1 month notice would result in no fee imposed, otherwise a cancellation fee of 20% from the course fee will be charged to the participant. • Any course materials distributed during the course are proprietary of (ISC)2 and not allowed for further dissemination to anyone outside the seminar.
Participant Signature: __________________________________________________