{"product_id":"isc2-issap®-information-systems-security-architecture-professional","title":"ISC2 ISSAP®: Information Systems Security Architecture Professional","description":"\u003cdiv\u003e\n\u003cp\u003eThe \u003cb\u003eInformation Systems Security Architecture Professional (ISSAP)\u003c\/b\u003e is an advanced security credential for professionals who design enterprise security solutions and provide risk-based architectural guidance aligned to organizational mission, strategy, and regulatory requirements.\u003c\/p\u003e\r\n\u003cp\u003eIn this intensive one-day course, learners explore the four domains of the ISSAP Common Body of Knowledge (CBK®), gaining practical insight into governance, security architecture modeling, infrastructure and system protection, and identity and access management (IAM) architecture.\u003c\/p\u003e\r\n\u003cp\u003eSuccessful participants strengthen their ability to align security architecture with business objectives, regulatory mandates, and evolving threat landscapes across enterprise, cloud, and hybrid environments.\u003c\/p\u003e\n\u003c\/div\u003e\u003cdiv\u003e\n\u003ch3\u003eISC2 ISSAP®: Information Systems Security Architecture Professional Benefits\u003c\/h3\u003e\n\u003cul\u003e\u003cli\u003e\n\u003cp\u003e\u003cb\u003eCourse Benefits\u003c\/b\u003e\u003c\/p\u003e\n\u003cul type=\"disc\"\u003e\n\u003cli\u003eAlign enterprise security architecture with governance, risk, and compliance requirements\u003c\/li\u003e\n\u003cli\u003eApply security architecture modeling frameworks, threat modeling, and validation techniques\u003c\/li\u003e\n\u003cli\u003eDesign secure infrastructure, system, and cryptographic architectures across hybrid environments\u003c\/li\u003e\n\u003cli\u003eArchitect scalable identity, authentication, authorization, and auditing solutions\u003c\/li\u003e\n\u003cli\u003eProvide risk-informed architectural guidance to organizational leadership\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003ePrerequisites\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eCandidates must meet \u003cb\u003eone\u003c\/b\u003e of the following:\u003c\/p\u003e\n\u003cul type=\"disc\"\u003e\n\u003cli\u003eHold an active \u003cb\u003eCISSP\u003c\/b\u003e in good standing \u003cb\u003eand\u003c\/b\u003e have \u003cb\u003etwo years\u003c\/b\u003e of cumulative full-time experience in one or more ISSAP domains\u003cbr\u003e\u003cb\u003eOR\u003c\/b\u003e\n\u003c\/li\u003e\n\u003cli\u003ePossess \u003cb\u003eseven years\u003c\/b\u003e of cumulative full-time experience in \u003cb\u003etwo or more\u003c\/b\u003e ISSAP domains\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eExperience Substitution:\u003c\/b\u003e\u003c\/p\u003e\n\u003cul type=\"disc\"\u003e\n\u003cli\u003eA relevant bachelor’s or master’s degree \u003cb\u003eor\u003c\/b\u003e an approved ISC2 credential may substitute for \u003cb\u003eone year\u003c\/b\u003e of experience\u003c\/li\u003e\n\u003cli\u003ePart-time work and internships may count toward experience requirements\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\u003c\/ul\u003e\n\u003c\/div\u003e\u003cdiv\u003e\u003ch3\u003eISSAP Security Architecture Certification Outline\u003c\/h3\u003e\u003c\/div\u003e\u003cdiv\u003e\n\u003ch4\u003eLearning Objectives\u003c\/h4\u003e\n\u003cp\u003e\u003cb\u003eDomain 1: Governance, Risk, and Compliance (GRC)\u003c\/b\u003e\u003c\/p\u003e\n\u003cul type=\"disc\"\u003e\n\u003cli\u003eLegal, regulatory, organizational, and industry security requirements\u003c\/li\u003e\n\u003cli\u003eSensitive data protection and privacy regulations\u003c\/li\u003e\n\u003cli\u003eThird-party and contractual obligations\u003c\/li\u003e\n\u003cli\u003eAsset identification, stakeholder alignment, and business objectives\u003c\/li\u003e\n\u003cli\u003eMonitoring, reporting, auditability, and forensic readiness\u003c\/li\u003e\n\u003cli\u003eRisk assessment integration and treatment strategies\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eDomain 2: Security Architecture Modeling\u003c\/b\u003e\u003c\/p\u003e\n\u003cul type=\"disc\"\u003e\n\u003cli\u003eEnterprise, cloud, network, and service-oriented architecture approaches\u003c\/li\u003e\n\u003cli\u003eFrameworks such as TOGAF®, SABSA, and reference architectures\u003c\/li\u003e\n\u003cli\u003eThreat modeling methods including STRIDE and CVSS\u003c\/li\u003e\n\u003cli\u003eDesign validation, testing, and peer review\u003c\/li\u003e\n\u003cli\u003eGap analysis, mitigations, and compensating controls\u003c\/li\u003e\n\u003cli\u003eCode review and security analysis methodologies\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eDomain 3: Infrastructure and System Security Architecture\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eSecurity Requirements \u0026amp; Deployment Models\u003c\/p\u003e\n\u003cul type=\"disc\"\u003e\n\u003cli\u003eOn-premises, cloud, and hybrid environments\u003c\/li\u003e\n\u003cli\u003eIT, OT, and physical security considerations\u003c\/li\u003e\n\u003cli\u003eMonitoring, cryptography, and secure application architecture\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eArchitecture Design \u0026amp; Protection Controls\u003c\/p\u003e\n\u003cul type=\"disc\"\u003e\n\u003cli\u003ePlatform, network, storage, and cloud security\u003c\/li\u003e\n\u003cli\u003eEndpoint protection, shared services, and third-party integrations\u003c\/li\u003e\n\u003cli\u003eInfrastructure and content monitoring\u003c\/li\u003e\n\u003cli\u003eBusiness continuity, disaster recovery, and incident communications\u003c\/li\u003e\n\u003cli\u003eSecurity control applicability across system components\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eCryptographic Architecture\u003c\/p\u003e\n\u003cul type=\"disc\"\u003e\n\u003cli\u003eDesign constraints, algorithms, and lifecycle considerations\u003c\/li\u003e\n\u003cli\u003eEncryption in transit, at rest, and in use\u003c\/li\u003e\n\u003cli\u003eKey generation, storage, distribution, and management\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cb\u003eDomain 4: Identity and Access Management (IAM) Architecture\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIdentity Lifecycle Architecture\u003c\/p\u003e\n\u003cul type=\"disc\"\u003e\n\u003cli\u003eIdentity establishment, verification, provisioning, and de-provisioning\u003c\/li\u003e\n\u003cli\u003eIdentity technologies and governance\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eAuthentication Architecture\u003c\/p\u003e\n\u003cul type=\"disc\"\u003e\n\u003cli\u003eSingle-factor, multi-factor, and risk-based authentication\u003c\/li\u003e\n\u003cli\u003eProtocols such as SAML, RADIUS, Kerberos, and OAuth\u003c\/li\u003e\n\u003cli\u003eTrust models and federation\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eAuthorization Architecture\u003c\/p\u003e\n\u003cul type=\"disc\"\u003e\n\u003cli\u003eLeast privilege, separation of duties, and authorization models\u003c\/li\u003e\n\u003cli\u003eRole-, rule-, attribute-, and token-based access control\u003c\/li\u003e\n\u003cli\u003ePrivileged access management (PAM) and digital rights management\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eAccounting, Auditing, and Compliance\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eAudit logging, alerts, integrity, and retention\u003c\/li\u003e\n\u003cli\u003eLog analysis, reporting, and forensic readiness\u003c\/li\u003e\n\u003cli\u003eCompliance alignment with PCI DSS, FISMA, HIPAA, and GDPR\u003c\/li\u003e\n\u003cli\u003eEnhanced ability to design security into systems from the start\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/div\u003e","brand":"Learning Tree","offers":[{"title":"267A96CN \/ 2026-07-13T09:00:00 \/ Ottawa","offer_id":53535431655790,"sku":"US-2080-IL","price":0.0,"currency_code":"USD","in_stock":true},{"title":"268D24US \/ 2026-08-31T09:00:00 \/ Herndon, VA","offer_id":53535431688558,"sku":"US-2080-IL","price":0.0,"currency_code":"USD","in_stock":true},{"title":"269C55EN \/ 2026-09-21T09:00:00 \/ London","offer_id":53535431721326,"sku":"US-2080-IL","price":0.0,"currency_code":"USD","in_stock":true},{"title":"26AA51CN \/ 2026-10-19T09:00:00 \/ Ottawa","offer_id":53535431754094,"sku":"US-2080-IL","price":0.0,"currency_code":"USD","in_stock":true},{"title":"26BC88US \/ 2026-11-30T09:00:00 \/ Herndon, VA","offer_id":53535431786862,"sku":"US-2080-IL","price":0.0,"currency_code":"USD","in_stock":true},{"title":"26CB49EN \/ 2026-12-14T09:00:00 \/ London","offer_id":53535431819630,"sku":"US-2080-IL","price":0.0,"currency_code":"USD","in_stock":true},{"title":"271A69CN \/ 2027-01-11T09:00:00 \/ Ottawa","offer_id":53535431852398,"sku":"US-2080-IL","price":0.0,"currency_code":"USD","in_stock":true},{"title":"272B91US \/ 2027-02-22T09:00:00 \/ Herndon, VA","offer_id":53535431885166,"sku":"US-2080-IL","price":0.0,"currency_code":"USD","in_stock":true},{"title":"274A59CN \/ 2027-04-19T09:00:00 \/ Ottawa","offer_id":53638477971822,"sku":"US-2080-IL","price":0.0,"currency_code":"USD","in_stock":true},{"title":"273A71EN \/ 2027-03-15T09:00:00 \/ London","offer_id":53733644271982,"sku":"US-2080-IL","price":0.0,"currency_code":"USD","in_stock":true}],"url":"https:\/\/learningtreeinternationalsita.myshopify.com\/products\/isc2-issap%c2%ae-information-systems-security-architecture-professional","provider":"SITA Training","version":"1.0","type":"link"}