CISSP: Application Security (replaced by course sp_cssp_a02_it_enus)

This course is included in our On-demand training solution.


To understand different threats to the enterprise environment and recognize different ways of increasing the security of application development; to prepare candidates for one of the ten knowledge domains assessed in (ISC)2’s CISSP certification exam

Target Audience

Mid-level and senior-level managers who are working toward or have already attained positions as CISOs, CSOs or Senior Security Engineers


A minimum of four years of professional experience in the information security field or three years plus a college degree

Expected Duration

120 min.

Course Objectives

CISSP: Application Security (replaced by course sp_cssp_a02_it_enus)

  • distinguish between open and closed source code and recognize the functionality of different program types.
  • distinguish between the types of attacks used in the enterprise environment and identify the appropriate methods to counteract them.
  • recognize the different types of malicious code that can affect a system or network and identify the methods that can be used to mitigate them.
  • identify the type of attack being perpetrated in a given scenario and determine the appropriate steps to counteract it.
  • recognize the characteristics of various knowledge-based systems and identify the activities involved in the different phases of the information systems development life cycle.
  • distinguish between various database models and technologies, and define basic concepts associated with databases and data warehousing.
  • select the appropriate database model for a given set of criteria.