When will I have access to the lectures and assignments?

To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

What will I get if I subscribe to this Specialization?

When you enroll in the course, you get access to all of the courses in the Specialization, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.

Is financial aid available?

Yes. In select learning programs, you can apply for financial aid or a scholarship if you can’t afford the enrollment fee. If fin aid or scholarship is available for your learning program selection, you’ll find a link to apply on the description page.

CISSP Domain 3: Security Architecture and Engineering

This course is part of Certified Information Systems Security Professional (CISSP) Specialization

Instructor: InfoSec Institute Instructor

2,689 already enrolled

Included with

Learn more

2 modules

Gain insight into a topic and learn the fundamentals.

13 reviews

Advanced level

Recommended experience

3 hours to complete

Flexible schedule

Learn at your own pace

2 modules

Gain insight into a topic and learn the fundamentals.

13 reviews

Advanced level

Recommended experience

3 hours to complete

Flexible schedule

Learn at your own pace

Skills you'll gain

Tools you'll learn

Details to know

Shareable certificate

Add to your LinkedIn profile

Assessments

2 assignments

Taught in English

See how employees at top companies are mastering in-demand skills

Learn more about Coursera for Business

logos of Petrobras, TATA, Danone, Capgemini, P&G and L'Oreal

Build your subject-matter expertise

This course is part of the Certified Information Systems Security Professional (CISSP) Specialization

When you enroll in this course, you'll also be enrolled in this Specialization.

Learn new concepts from industry experts
Gain a foundational understanding of a subject or tool
Develop job-relevant skills with hands-on projects
Earn a shareable career certificate

There are 2 modules in this course

In this course, we will cover Domain 3 of the CISSP exam, which focuses on security architecture and engineering. We introduce principles of security design like “secure-by-default” and principles of least privilege. We will examine security models on which systems can be built and look at the hardware, software and firmware that will enforce these models. We will also dive into cloud services and CISSP. Beginning with a high-level overview of how cloud computing works, you'll see different deployment models, different service structures and the various security risks inherent in each model.

Module details

In this course, we will introduce principles of security design like “secure-by-default” and principles of least privilege. We will examine security models on which systems can be built and look at the hardware, software and firmware that will enforce these models

What's included

10 videos1 assignment

10 videosTotal 76 minutes

Introduction to security architecture and design2 minutes
Secure design principles10 minutes
Threat modeling8 minutes
Introduction to security models11 minutes
Bell-LaPadula model10 minutes
Biba security model7 minutes
Clark-Wilson and Brewer-Nash security models9 minutes
System security enforcement8 minutes
Security evaluation criteria10 minutes
Security architecture and design wrap-up1 minute

1 assignmentTotal 30 minutes

Security architecture and design quiz30 minutes

In this course, you will dive into cloud services and CISSP. Beginning with a high-level overview of how cloud computing works, you'll see different deployment models, different service structures and the various security risks inherent in each model.