Category: Training

In the world of cybersecurity, stability is key. Every time a system is updated, a firewall rule is modified, or a server is patched, the organization introduces risk. The Change Management Process is the administrative control (Domain 1) designed to minimize this risk by ensuring that all system modifications are documented, reviewed, tested, and approved […]

For the SSCP, or any security practitioner, understanding human controls is just as important as configuring a firewall. Too often, organizations use the terms “Security Awareness” and “Security Training” interchangeably, but they serve fundamentally different purposes in a robust security program. As an administrative control (Domain 1), your policies must mandate both, but with distinct […]

In cybersecurity, defense isn’t just about firewalls and encryption; it’s about people and processes. Before you implement a single technical control, you need clear administrative controls that define who is responsible for what. This concept, often called separation of duties, is essential for preventing fraud, limiting human error, and ensuring accountability. For the SSCP, you […]

The SSCP certification validates your hands-on ability to implement, monitor, and administer security controls in an IT infrastructure. The exam is highly focused on operational security and technical application. Domain 1: Security Operations and Administration (15%) This domain covers the foundational rules and processes that govern security within an organization. Domain 2: Access Controls (16%) […]

This schedule breaks down the seven SSCP domains and the final review strategy into 120 sessions. The weighting of the domains has been used to approximate the number of days assigned to each area. Day Domain 90-Minute Session Focus Week 1: D1 – Security Operations & Administration (15%) Day 1 D1 Security Roles (CISO, Analyst, […]