• Training page


The Certified Information Systems Security Professional (CISSP® ) certification is highly sought after by those who are looking for a career in information security or to earn world class credential for recognition. The CISSP® Rapid Review Course is an intensive, in-depth training course that has consistently achieved a 95% pass rate in the CISSP® examination. If you do not pass at your first attempt you are welcome to re-attend the course free of charge.

Why you should Select ITGRC?

ITCRG then (eVision) is proud to introduce CISSP certification training programme first time in Sri Lanka in 2005, and since then we were maintaining the Infosec training leadership position in the country. ITGRC was awarded the “Best InfoSec training organization” credential in the year 2008 by the ISACA (Sri Lankan Chapter) for its contribution made to the industry in providing quality Information security training services. ITGRC is now organized as the leading information security training provider in Sri Lanka among other leading certification schemes of training.
Our trainers are industry leading experts in information security having over 30 years wealth of experience in Information security, IT Governance, Risk Management, IT audit, Business continuity and Operational risks.


CISSP® Rapid Review Course

The CISSP® (Certified Information Systems Security Professional) certification is recognised as the ‘must have’ requirement for the development of a senior career in information security, audit and IT governance management.

With over 30,000 qualified professionals worldwide, CISSP® certification demonstrates proven experience and is the key to a higher earning potential in roles that include CISO, CSO, Senior Security Managers and Operational Risk Managers.


The CISSP® Rapid Review course is an intensive and complete preparation for delegates who wish to pass the (ISC)² CISSP® examination at the very first attempt. Delivered over 10 days, this unique 4 phase intensive study programme includes the following:

  • Pre-course CISSP® knowledge assessment
  • Classroom presentation delivered by an experienced CISSP® qualified trainer
  • Final Exam Preparation with sample exam questions
  • Delivery of fully up-to-date CBK with the 2012 Domain Updates

Who Should Participate?

The CISSP® Rapid Review Course is designed for anyone interested including under Graduates who seek in career shift to information security profession who require a complete programme of preparation prior to taking the (ISC)² CISSP® examination. More specifically, this workshop is meant for professionals responsible for the information risk and security of the organization:

  • CEO / CFO / CIO / CTO / CISO
  • IT Managers
  • Information Security Managers
  • Security Consultants
  • Security Architects
  • Security Specialists
  • Network Specialists
  • Network Engineers
  • System Administrators
  • IS Auditors /General Auditors

The CISSP certification would immensely benefit those aspiring to make a career in Information Security Management.


There are many reasons to achieve a CISSP certification:
Benefits to the Professionals :

  • Demonstrates a working knowledge of information security
  • Confirms commitment to profession
  • Offers a career differentiator, with enhanced credibility and marketability
  • Provides access to valuable resources, such as peer networking and idea exchange

Benefits to the Organization:

  • Establishes a standard of best practices
  • Offers a solutions-orientation, not specialization, based on the broader understanding of the (ISC)² CBK
  • Allows access to a network of global industry and subject matter/domain experts
  • Makes broad-based security information resources readily available
  • Adds to credibility with the rigor and regimen of the certification examinations
  • Provides a business and technology orientation to risk management


There are no prerequisites for this course, experience in information security and governance or having taken other security courses will be extremely helpful.

Course Details:

Commencement date: 02nd Dec. 2017  Duration: 7 Saturdays from 8.30am- 5.30pm 

Venue: ITGRC Training Center


This course is conducted by Industry leaders of Information Security have over 30 years of practicing information security experiences and university academics.

How do we guarantee you will pass the CISSP® exam?

This course follows a unique 4 phase study programme.

Phase 1 - Pre-Course Assessment
Prior to start the course, all delegates will be asked to take a free online pre-course assessment designed to determine the strengths and weaknesses of their current knowledge. The results of this assessment are used by our trainer to prepare an individual Pre-course Study Plan and to adapt the delivery of the subsequent classroom training to meet the needs of the individual and the group.

Phase 2 - Classroom Training

Our experienced trainer will present and review the information associated with the 10 CISSP® Domains (updated to 2012 version) which constitute the required (ISC)² Common Body of Knowledge (CBK):

  • Access Control
  • Telecommunications & Network Security
  • Information Security Governance & Risk Management
  • Software Development Security
  • Cryptography
  • Security Architecture & Design
  • Operations Security
  • Business Continuity & Disaster Recovery Planning
  • Legal, Regulations, Investigations & Compliance
  • Physical (Environmental) Security

(50 questions are discussed at the end of each module)

Course Outline

Course Outline

1. Introduction

      • Course Overview
      • CISSP Candidate Requirements
      • CISSP Exam Review

2. Access Control

      • Access control concepts
      • Effectiveness
      • Attacks

3. Telecommunications and Network Security

      • Network architecture and design
      • Communication channels
      • Network components
      • Network attacks

4. Information Security Governance and Risk Management

      • Security governance and policy
      • Information classification/ownership
      • Contractual agreements and procurement processes
      • Risk management concepts
      • Personnel security
      • Security education, training and awareness
      • Certification and accreditation

5. Software Development Security

      • Systems development life cycle (SDLC)
      • Application environment and security controls
      • Effectiveness of application security

6. Cryptography

      • Encryption concepts
      • Digital signatures
      • Cryptanalytic attacks
      • Public Key Infrastructure (PKI)
      • Information hiding alternatives

8. Security Architecture and Design

      • Fundamental concepts of security models
      • Capabilities of information systems (e.g. memory protection, virtualization)
      • Countermeasure principles
      • Vulnerabilities and threats (e.g. cloud computing, aggregation, data flow control)

8. Operations Security

      • Resource protection
      • Incident response
      • Attack prevention and response
      • Patch and vulnerability management

9. Business Continuity and Disaster Recovery Planning

      • Business impact analysis
      • Recovery strategy
      • Disaster recovery process
      • Provide training

10. Legal, Regulations, Investigations and Compliance

      • Legal issues
      • Investigations
      • Forensic procedures
      • Compliance requirements/procedures

11. Physical (Environmental) Security

    • Site/facility design considerations
    • Perimeter security
    • Internal security
    • Facilities security

Phase 3 – Final Preparation
To provide continued support during the crucial pre-exam period of preparation, all delegates will have access to our Online Resources which deliver a synopsis of all essential domain knowledge together with practice exam questions. They also have online access to our trainer who will answer any last minute questions as required.
Our experience shows that delegates have the highest chance of success if they sit the CISSP® examination on a date that is less than 2 weeks after the completion of the programme. All bookings for the CISSP® Rapid Review Course will include access to the Online Resources for a period of 2 weeks.

Candidates are eligible to attend the course programme free of charge if they are not successful at the first attempt with in a period of 1 year.

Phase 4- Re-taking the Exam

Candidates are eligible to attend the course programme free of charge if they are not successful at the first attempt with in a period of 1 year.


Are the 4 Phases compulsory?

The Pre-course CISSP® Knowledge Assessment and Final Preparation resources are available on an optional basis for this programme. However, to ensure that delegates fully prepare and increase their chance of passing the CISSP® exam first time, we strongly recommend that all first 3 phases are completed. Delegates with more experience, or those who have taken the exam before are welcome to attend the classroom training only. There is no additional charge for the pre-course and final preparation resources.

Booking your CISSP® Examination

Please note that the (ISC)² CISSP® examination is not taken during this training programme. Our training team will provide assistance in helping you to reserve your examination at an official (ISC)² exam centre in Sri Lanka.

Training and CISSP® entry requirements

While there are no mandatory requirements for this training course, it is designed for experienced information security professionals, who are preparing for the (ISC)² CISSP® (Certified Information Systems Security Professional) examination.

Please note that even after successful completion of the exam, only those who can demonstrate 5 years' of experience amongst the 10 CBK domains will be granted the CISSP® certification. Others will be able to call themselves CISSP® Associate until they gain the required experience.

Course Fee:

: LKR 80,000 without exam ticket, payable in 2 installments. This includes:

  • Refreshments
  • Presentation materials
  • Certificate of attendance
  • 1000 examination questions discussion to be discussed in groups
  • Mock Test with 250 questions at the end of the course
  • Certificate of attendance


This course is non-residential. To take advantage of this offer, drop us a mail to: info@itgrc.lk after you book your course on- line through our website www.itgrc.lk

Prepare for CISSP® success: book your training with us!

Register Now- link to enrollment page


The Swirl logoTMis a trade mark of AXELOS Limited.
ITIL®is a registered trade mark of AXELOS Limited.
PRINCE2®is a Registered Trade Mark of AXELOS Limited.
COBIT®is a trademark of ISACA®registered in the United States and other countries.
CISM CRISC CGEIT CISA® are Registered Trade Marks of the Information Systems Audit and Control Association (ISACA) and the IT Governance Institute
CISSP is a registered mark of The International Information Systems Security Certification Consortium ((ISC)2)