What will I be able to do upon completing the Specialization?

Some jobs for which you may be competative are: a Security Analyst, Chief Information Security Officer (CISO), Security Systems Engineer, Security Architect, Network Architect, Security Manager, IT Security Consultant, Cybersecurity Engineer, Security Auditor, Senior Information Security Risk Officer, and more!

Is this course really 100% online? Do I need to attend any classes in person?

This course is completely online, so there’s no need to show up to a classroom in person. You can access your lectures, readings and assignments anytime and anywhere via the web or your mobile device.

Can I just enroll in a single course?

Yes! To get started, click the course card that interests you and enroll. You can enroll and complete the course to earn a shareable certificate. When you subscribe to a course that is part of a Specialization, you’re automatically subscribed to the full Specialization. Visit your learner dashboard to track your progress.

Is financial aid available?

Yes. In select learning programs, you can apply for financial aid or a scholarship if you can’t afford the enrollment fee. If fin aid or scholarship is available for your learning program selection, you’ll find a link to apply on the description page.

Can I take the course for free?

No, you cannot take this course for free. When you enroll in the course, you get access to all of the courses in the Specialization, and you earn a certificate when you complete the work. If you cannot afford the fee, you can apply for financial aid.

Certified Information Systems Security Professional (CISSP) Specialization

Ends soon! Save on skills that make you shine with 40% off 3 months of Coursera Plus. Save now

Certified Information Systems Security Professional (CISSP) Specialization

Pass Your ISC2 CISSP Exam.

Gain core knowledge of risk management, security and more across all 8 domains of the ISC2 CISSP.

Instructor: InfoSec Institute Instructor

7,498 already enrolled

Included with

Learn more

8 course series

Get in-depth knowledge of a subject

from 104 reviews of courses in this program

Advanced level

Recommended experience

4 weeks to complete

at 10 hours a week

Flexible schedule

Learn at your own pace

8 course series

Get in-depth knowledge of a subject

from 104 reviews of courses in this program

Advanced level

Recommended experience

4 weeks to complete

at 10 hours a week

Flexible schedule

Learn at your own pace

What you'll learn

The learner will be able to learner will be able to pass the CISSP exam as well as design, implement and manage a cybersecurity program.

Skills you'll gain

Tools you'll learn

Single Sign-On (SSO)

Details to know

Shareable certificate

Add to your LinkedIn profile

Taught in English

See how employees at top companies are mastering in-demand skills

Learn more about Coursera for Business

logos of Petrobras, TATA, Danone, Capgemini, P&G and L'Oreal

Advance your subject-matter expertise

Learn in-demand skills from university and industry experts
Master a subject or tool with hands-on projects
Develop a deep understanding of key concepts
Earn a career certificate from Infosec

Specialization - 8 course series

The CISSP certification specialization will prepare students for the rigorous CISSP exam. Our individual courses provide in-depth coverage across all eight domains per ISC2, broken down into manageable sections a student can review at their own pace. Our instructor is an industry veteran with over 25 years of experience, both in the field and in the classroom.

The courses included in this learning path are organized and taught in such a way to allow maximum retention of information. Through the use of real-world scenarios, analogies and humor, the CISSP material comes to life. An individual who completes this learning path will gain knowledge equivalent to that of a seasoned professional and should be able to implement the learned skills, delivering value to any organization.

Applied Learning Project

Learners will be provided end-of-course assessments with questions similar to those on the CISSP in each domain. After completion of all courses, students will take a final practice exam that mirrors the length of the ISC2 CISSP exam and style of questions so that they can determine if they are prepared to take the exam.

CISSP Domain 1: Security and Risk Management

Course 1, 3 hours

What you'll learn

We being our journey into CISSP with Domain 1. This course begins with the basic fundamentals of information security and builds to discuss the roles of information security governance, the importance of security frameworks, takes a look at laws and regulations impacting cyber security and examines how all the pieces fit together to provide an information security program that delivers value to the enterprise.e.g. This is primarily aimed at first- and second-year undergraduates interested in engineering or science, along with high school students and professionals with an interest in programming.

Skills you'll gain

Category: Risk Management

Category: ISO/IEC 27001

Category: Risk Management Framework

Category: Cyber Governance

Category: Security Management

Category: Information Assurance

Category: Business Risk Management

Category: Security Controls

Category: Continuous Monitoring

Category: Risk Mitigation

Category: Information Systems

Category: Regulation and Legal Compliance

Category: Threat Management

Category: Cyber Security Policies

Category: Cybersecurity

Category: Risk Control

Category: Risk Analysis

Category: Governance

Category: Law, Regulation, and Compliance

Category: Information Systems Security

CISSP Domain 2: Asset Security

Course 2, 1 hour

What you'll learn

One of the most important jobs an information security professional has is the protection of organizational assets. We will look at the various types of assets and discuss their value. We will then look at common threats to information and their mitigation, providing coverage throughout the entire data life cycle.

Skills you'll gain

Category: Data Loss Prevention

Category: Information Assurance

Category: Personally Identifiable Information

Category: Record Keeping

Category: Data Storage

Category: Security Management

Category: Data Security

Category: Threat Detection

Category: Identity and Access Management

Category: Threat Management

Category: Data Integrity

Category: Data Governance

Category: Data Management

Category: Security Controls

CISSP Domain 3: Security Architecture and Engineering

Course 3, 3 hours

What you'll learn

In this course, we will cover Domain 3 of the CISSP exam, which focuses on security architecture and engineering. We introduce principles of security design like “secure-by-default” and principles of least privilege. We will examine security models on which systems can be built and look at the hardware, software and firmware that will enforce these models. We will also dive into cloud services and CISSP. Beginning with a high-level overview of how cloud computing works, you'll see different deployment models, different service structures and the various security risks inherent in each model.

Skills you'll gain

Category: Cloud Services

Category: Cloud Computing

Category: Computer Security

Category: Security Controls

Category: Data Security

Category: Cloud Security

Category: Cloud Computing Architecture

Category: Data Integrity

Category: Cloud Deployment

Category: IT Security Architecture

Category: Application Security

Category: Systems Architecture

Category: Threat Modeling

Category: Software As A Service

Category: Platform As A Service (PaaS)

Category: Security Engineering

Category: Infrastructure As A Service (IaaS)

CISSP Domain 4: Communication and Network Security

Course 4, 6 hours

What you'll learn

This course focuses on Domain 4 of the CISSP exam, covering network security. It begins with an in-depth look at the OSI Reference Model. At each layer, we will discuss functionality, threats/vulnerabilities and common mitigation strategies. In addition, we will focus on firewalls, proxy servers and remote access solutions. It also covers the security services that cryptography can provide and examine common terms like initialization vectors, salts, hashing, algorithms and keys. We will then build on this foundation to explore symmetric, asymmetric and hybrid cryptography and look at its practical implementations.

Skills you'll gain

Category: Cryptography

Category: OSI Models

Category: Network Security

Category: Encryption

Category: Brute-force attacks

Category: Threat Modeling

Category: Network Protocols

Category: Cybersecurity

Category: Public Key Infrastructure

Category: Data Encryption Standard

Category: Cryptographic Protocols

Category: Firewall

Category: Advanced Encryption Standard (AES)

Category: Key Management

Category: Local Area Networks

Category: Wireless Networks

Category: TCP/IP

Category: Authentications

Category: Emerging Technologies

Category: Remote Access Systems

CISSP Domain 5: Identity and Access Management (IAM)

Course 5, 2 hours

What you'll learn

The Identity and Access Management course corresponds to Domain 5 of the CISSP exam. It provides an insight into the steps of access control. We will begin by discussing identity management and provisioning/deprovisioning accounts. We will then move to the AAA functions of authentication, authorization and accounting. We will additionally cover the concepts of single sign-on in local domains, as well as across the internet.

Skills you'll gain

Category: Identity and Access Management

Category: Multi-Factor Authentication

Category: Security Assertion Markup Language (SAML)

Category: Single Sign-On (SSO)

Category: Authorization (Computing)

Category: User Provisioning

Category: Cryptographic Protocols

Category: Role-Based Access Control (RBAC)

Category: User Accounts

Category: Key Management

Category: OAuth

Category: Authentications

CISSP Domain 6: Security Assessment and Testing

Course 6, 1 hour

What you'll learn

Security assessment and testing is the focus of Domain 6 on the CISSP exam. We will look at the processes and systems necessary to provide an insight into the organization’s security posture. We will explore security tests, vulnerability analysis and penetration testing, then look at security devices like SIEM systems, intrusion detection systems and honeypots.

Skills you'll gain

Category: Security Testing

Category: Vulnerability Assessments

Category: Intrusion Detection and Prevention

Category: System Monitoring

Category: Cyber Security Assessment

Category: Threat Detection

Category: Penetration Testing

Category: Security Controls

Category: White-Box Testing

Category: Continuous Monitoring

Category: Software Testing

Category: Vulnerability Scanning

Category: IT General Controls (ITGC)

CISSP Domain 7: Security Operations

Course 7, 4 hours

What you'll learn

This course covers Domain 7 of the CISSP exam, focusing on security operations. In it we will look at incident response and forensic investigations, including response planning and change management. We'll also discuss how to keep your systems ready for anything with redundancy and how to plan ahead with a module on contingency planning, including facility recovery and testing. And finally, we'll explore physical security, including site and facility design; fire safety and prevention; and data center security.

Skills you'll gain

Category: Disaster Recovery

Category: Security Controls

Category: Incident Response

Category: Infrastructure Security

Category: Digital Forensics

Category: Change Control

Category: Cybersecurity

Category: Incident Management

Category: Data Centers

Category: Scenario Testing

Category: Contingency Planning

Category: Security Management

Category: Business Continuity Planning

Category: Computer Security Incident Management

Category: Configuration Management

CISSP Domain 8: Software development security

Course 8, 5 hours

What you'll learn

This course examines the need to provide security throughout the SDLC, which aligns with Domain 8 on the CISSP exam. We will compare and contrast Agile and the waterfall methodologies, and look at the assessment of web applications and more traditional applications. We will examine common threats like cross-site scripting, buffer overflows and race conditions. Finally, we will examine databases and their vulnerabilities/solutions.

Skills you'll gain

Category: Software Development Life Cycle

Category: Application Security

Category: Secure Coding

Category: Threat Modeling

Category: Software Testing

Category: Code Reusability

Category: Risk Management Framework

Category: Software Development Methodologies

Category: Security Testing

Category: Web Applications

Category: Vulnerability Scanning

Category: Systems Development Life Cycle

Category: Development Testing

Category: Databases

Category: Software Development

Category: Application Programming Interface (API)

Category: Agile Methodology

Category: Data Validation

Category: Exploitation techniques

Earn a career certificate

Add this credential to your LinkedIn profile, resume, or CV. Share it on social media and in your performance review.

Instructor

InfoSec Institute Instructor

Infosec

13 Courses59,829 learners

Offered by

Infosec

Why people choose Coursera for their career

Felipe M.

Learner since 2018

"To be able to take courses at my own pace and rhythm has been an amazing experience. I can learn whenever it fits my schedule and mood."

Jennifer J.

Learner since 2020

"I directly applied the concepts and skills I learned from my courses to an exciting new project at work."

Larry W.

Learner since 2021

"When I need courses on topics that my university doesn't offer, Coursera is one of the best places to go."

Chaitanya A.

"Learning isn't just about being better at your job: it's so much more than that. Coursera allows me to learn without limits."

Frequently asked questions

There are 15 hours of video content, plus quizzes and a practice exam at the end of the specialization. It should take at least 22-25 hours to complete the specialization

It is recommended that anyone taking the exam have a background of at least 5 years as a cybersecurity professional.

The courses can be taken in any order, but covering them sequentially by Domain, as they are in this specialization, may work best.

Certified Information Systems Security Professional (CISSP) Specialization

Certified Information Systems Security Professional (CISSP) Specialization

What you'll learn

Skills you'll gain

Tools you'll learn

Details to know

See how employees at top companies are mastering in-demand skills

Advance your subject-matter expertise

Specialization - 8 course series

What you'll learn

Skills you'll gain

What you'll learn

Skills you'll gain

What you'll learn

Skills you'll gain

What you'll learn

Skills you'll gain

What you'll learn

Skills you'll gain

What you'll learn

Skills you'll gain

What you'll learn

Skills you'll gain

What you'll learn

Skills you'll gain

Earn a career certificate

Instructor

Offered by

Why people choose Coursera for their career

Felipe M.

Jennifer J.

Larry W.

Chaitanya A.

Frequently asked questions

How long does it take to complete the Specialization?

What background knowledge is necessary?

Do I need to take the courses in a specific order?

More questions