CSX-P Cybersecurity Practitioner

Study Group Training Solution

TRAIN – TEST – CERTIFY
Conquer the cybersecurity field. ISACA’s CSX-P is the first and only comprehensive
performance certification, testing one’s ability to perform cybersecurity tasks spanning
5 security functions:
Identify, Protect, Detect, Respond, and Recover

Training provider: In collaboration with

Cybersecurity – No.1 organizational priority
In today’s connection economy, cybersecurity attacks can result in major losses of data, critical
infrastructure failures, extortions and even losses of human lives. Today more than ever before
society, governments, corporations and individuals must be secured against cyber threats. And
this duty is the work of cybersecurity experts.
A training program or a certification based on multiple-choice schemes is not enough to
guarantee that the people securing networks and data in your organization can best secure
these assets against cyber threats.
That is why ISACA, one of the premium certification bodies in the world, developed the CSX
Practitioner, a performance-based certification program for information security professionals.
The CSX Practitioner program is a competency-based certification, meaning that not only the
knowledge but also participants’ ability to perform cybersecurity tasks is assessed.

About the CSX Practitioner Certification

1 CSX-P was introduced by ISACA in 2015 as a vendor-neutral, performance-based

certification for information security and cybersecurity professionals

2 CSX-P requires candidates to demonstrate critical cybersecurity skills in a live, virtual

environment, performing on actual cyber security scenarios, and not just pass a
multiple-choice exam

3 CSX-P remains the only comprehensive performance certification in the field that
assesses an individual’s ability to perform technical tasks spanning 5 security functions
– identify, protect, detect, respond and recover.

4 CSX-P requires candidates to be able to apply foundational cybersecurity knowledge

and skills required for an evolving cyber first responder

5 CSX Practitioner Certificate consists of: a) 10 virtual study labs, b) exam passing score,
3) successful completion of the certification application (meeting all requirements)

About ISACA:
Now in its 50th anniversary year, ISACA® (isaca.org) is a global association helping individuals and
enterprises achieve the positive potential of technology. ISACA equips professionals with the knowledge,
credentials, education and community to advance their careers and transform their organizations. ISACA
leverages the expertise of its 460,000 engaged professionals -including 140,000 members- in information
and cybersecurity, governance, assurance, risk and innovation, as well as its enterprise performance
subsidiary, CMMI® Institute, to help advance innovation through technology. ISACA has a presence in
more than 188 countries, including more than 220 chapters worldwide and offices in both the United
States and China.

The ISACA Athens Chapter

The ISACA Athens Chapter (www.isaca.gr) was established in 1994 and counts today approximately 500+
members, holding positions in all areas of IT. Currently, it is the only ISACA Chapter in Greece and has
been awarded four times as Best Large Chapter in Europe/Africa in the last few years (2009, 2012, 2013,
2014).

*CSX Cyber Security Nexus is the Trademark of ISACA, registered in USA and other Countries.
CSX-P: Is it for you?
With an exponential increase in cybersecurity threats and the cybersecurity industry critically short of
skilled professionals, this certification can be your career changer. And this is the only performance-
based certification in the cybersecurity field.
CSX-P is for IT professionals who can demonstrate that they have the technical skills and what it takes
to protect and defend their organization.
It is strongly recommended to holders of the following certifications: CISA, CRISC, CISM, CGEIT,
ECSA, CEH, LPT, GCIH, OSCP, GPEN, CySA+, CISSP, CSX Penetration Testing Overview (CPTO), or CSX
Cybersecurity Fundamentals.
Prerequisites: If the candidate does not hold at least one of the above certifications, it is recommended
that they have 3 years of experience in 3 or more of the 5 CSX-P cybersecurity domains which align
with those of the globally accepted NIST Cybersecurity Framework: Identify, Protect, Detect, Respond
and Recover.
After the course, candidates should be comfortable with working with a variety of applications,
operating systems, tools, and utilities prior to sitting for the exam. This includes but is not limited to:
Kali Linux, Kibana, Microsoft Windows Server 2016, Microsoft Windows clients – all beginning with XP,
Microsoft security features, Nmap/Zenmap, Network troubleshooting commands, OpenVAS, PfSense,
Security Onion, Squil, Terminal applications, Ubuntu, Wireshark

The CSX-P learning and certification journey

ISACA offers the CSX Cybersecurity Practitioner certification, in a self-paced and virtual format. This is
ISACA’s ACCELERATED CSX CYBERSECURITY PRACTITIONER CERTIFICATION SUITE, which is:
On-demand and self-paced: it is available anytime, anywhere, in a cloud-based virtual environment.
Hands-on: candidates have access to 10 self-paced online practice labs. Candidates through hands-on
learning and practice apply basic concepts to pre-designed cybersecurity scenarios, utilize a large array
of open-source tools that they can use in their daily jobs, enhance their technical skills by learning to
deal with real threats in a live network environment provided through virtual labs.
No technical hassles: candidates only need to have a high-speed internet connection, a computer and
a browser. No special configuration is needed.
Certification included in the package: candidates who purchase the ACCELERATED CSX CYBERSECURITY
PRACTITIONER CERTIFICATION SUITE also get the voucher for the exam and gain access to the
certification application.

Important: There are no typical prerequisites for purchasing the ACCELERATED CSX CYBERSECURITY
PRACTITIONER CERTIFICATION SUITE, just complete the 10 virtual labs and take the certification test.
However, in order to get the CSX-P Certification title you also need to have the following prerequisites,
which you fill in your certification form once you pass the exam.
CSX-P candidates should hold at least one of the following certifications: CISA, CRISC, CISM, CGEIT,
ECSA, CEH, LPT, GCIH, OSCP, GPEN, CySA+, CISSP, CSX Penetration Testing Overview (CPTO), or CSX
Cybersecurity Fundamentals
Or,
If the candidate does not hold at least one of the above certifications, it is recommended that they
have 3 years of experience in 3 or more of the 5 CSX-P cybersecurity domains which align with those of
the globally accepted NIST Cybersecurity Framework: Identify, Protect, Detect, Respond and Recover.
The exam:
This is a 1-hour online, virtual assessment exam with 5 tasks based on scenarios. You must complete
tasks of varying durations with minimal instruction while navigating through multiple virtual machines
and are expected to:
Be able to use vulnerability assessment processes and scanning tool sets to identify and
document vulnerabilities based on defined assets, criticality and technical impacts.
Obtain and aggregate information from multiple sources – for example, logs, event data network
assessments – for use in threat intelligence, metrics, incident detection, and response.
Implement specified cybersecurity controls – for network, application, endpoint, server, and
more – and confirm that controls are operating as required by defined policy or procedure.
Implement and document changes to cybersecurity controls – for example: endpoint security
and network security – in compliance with change management procedures.
Identify anomalous activity and potential internal, external, and third-party threats to network
resources using network traffic monitors or intrusion detection and prevention systems, as well
as ensure timely detection of indicators of compromise.
Perform initial attack analysis to determine the attack vectors, targets and scope as well as its
potential impact.
Execute defined response plans to contain damage on affected assets.

Scoring is immediate.

The CSX-P Study Group Training Solution

The ISACA Athens Chapter in cooperation with the Hellenic
American Union offers you a study group training solution to Starts: 27 September
help you complete the ACCELERATED CSX CYBERSECURITY 10 weeks
PRACTITIONER SUITE and get certified.
10 study group sessions
This solution is complementary to the CSX Suite, not mandatory,
however it will help you get through the CSX Suite process in the 3 hrs per session
most convenient and effective way.CSX-P is not a typical multiple-
choice certification exam. 10 hrs online support
Unlike most prep training courses which require candidates to 1-hour exam
sit through hours of lecturing and demos, this a training solution
specifically designed for the challenging virtual-learning format of
the CSX-P Certification.
How does it work?
The study group of CSX-P Candidates is created.
The lead instructor provides orientation on how to start with the virtual labs.
Each of the CSX-P Candidate purchases the ACCELERATED CSX CYBERSECURITY PRACTITIONER
CERTIFICATION SUITE (This contains 10 labs, the exam voucher and the certification application).
The lead instructor provides guidance on how to begin with the first lab and perform the tasks
required.
The study group will meet with the lead instructor at predetermined dates and times in order to:
1. Discuss the theory behind each of the labs (before conducting the related lab)
2. Answer questions raised
3. Fill knowledge gaps
This way you complete each lab with a 100% success, no frustration, no vague areas, no unanswered
questions, economizing on studying time.
Online support, as well as supporting material will also be provided between study group meetings
by the lead instructor.
This study group scheme spans 3 months, with study group meetings once a week for a 10-week
period. Before the expiration of the suite (which is 6 months from the date of purchase) the study
group participants will schedule and take the test.

What will you learn?

As per the CSX-P Content Outline, you will learn to apply foundational cybersecurity knowledge and
practice skills required for an evolving cybersecurity first responder. The labs focus on complex, technical
cyber skills and scenarios.

Course structure / Labs Examination Domains

Each lab covers the complex technical skills
aligned with global cybersecurity frameworks
and the 5 domains of the Certification Program:
Identify
Business and Security
Identify, assess, evaluate assets, threats and Environment
vulnerabilities in internal and external networks
Protect
Operational Security Readiness
Cybersecurity controls against identified threats
Detect
Network and system incidents, events, Threat Detection and Evaluation
compromise indicators, assessment of potential
damage
Respond
Comprehensive incident response plans,
mitigation
of cyber incidents Incident Response and Recovery
Recover
Incidents and disaster recovery, post incident-
response documentation, continuity plan
Important dates and the CSX-P Study Group Schedule

Apply and complete payment for the CSX-P Deadline: 15 September

Study Group Training Solution
Receive instructions for purchasing Deadline: September 20
the ACCELERATED CSX CYBERSECURITY
PRACTITIONER CERTIFICATION SUITE, and
purchase the product
Begin Lab #1 practice Deadline: September 21
Study Group Meeting #1 September 27
Begin Lab #2 practice September 28
Study Group Meeting #2 October 11
Begin Lab #3 practice October 12
Study Group Meeting #3 October 17
Begin Lab #4 practice October 18
Study Group Meeting #4 October 24
Begin Lab #5 practice October 25
Study Group Meeting #5 November 11
Begin Lab #6 practice November 12
Study Group Meeting #6 November 21
Begin Lab #7 practice November 22
Study Group Meeting #7 November 28
Begin Lab #8 practice November 29
Study Group Meeting #8 December 5
Begin Lab #9 practice December 6
Study Group Meeting #9 December 12
Begin Lab #10 practice December 13
Study Group Meeting #10 December 18

Important dates:
15 September: It is the final day you can apply to participate in the CSX-P Study Group Training
Solution. We may not be able to start this Study Group Program unless we have the minimum
number of registrations required. Therefore, you must complete your registration form by
September 15 at the latest.
20 September: As soon as participants receive confirmation that the program will run, they can
go ahead and purchase the ACCELERATED CSX CYBERSECURITY PRACTITIONER CERTIFICATION
SUITE. Participants must purchase the package by September 20 at the latest so that they can
immediately start with the first lab practice and come prepared for the first group meeting on
September 27.
Orientation instructions will be provided by September 15 as well as during your initial access
to the virtual labs.
Your Study Group Leader

Argyro (Iro) Chatzopoulou

Iro has graduated from the Aristotle University of Thessaloniki where she participated in projects
of molecular modeling of materials using computer programs at both under- and post-graduate
level. She holds two Master’s Degrees, the first one in Physics of Materials and the second one in
Informatics with specialization on Evaluation of Security in Cloud Computing.
During her professional career she has been employed by IT-oriented companies as IT professional –
member of the IT Dpt, Network Responsible, Security officer etc.. Apart from the above, she has been
an Instructor of various IT-related courses since 2001.
From 2004 till today, she has been a member of the International Certification Body TÜV AUSTRIA
HELLAS, subsidiary of the TÜV AUSTRIA group.
She is an active senior auditor for Management Audits in the fields of Information Security, IT Service
Management, Business Continuity, Quality and Quality in Education and an instructor in various
specialized topics.

Also, she holds the following certifications:

CISA (Certified Information Systems Auditor)
HISP (Holistic Information Security Practitioner)
CCSK (Certificate in Cloud Security Knowledge)
ISEB BCM (Business Continuity Management)
CSA STAR Auditor (Cloud Security Alliance - Security, Trust & Assurance Registry)
PRINCE2 Practitioner (Projects IN Controlled Environments)
CSX (F) (Cybersecurity Fundamentals Certificate)
FAQs
How do I maintain the The certification is valid for three years. You must also attain and report 30 CPES every year.
CSX-P Certification? At the end of the 3-year period you need to take the CSX-P Exam again. Also, note that you
must demonstrate proficiency annually in a lab or other skills-based environment and you
must also participate in knowledge-based training. ISACA and local chapters will provide
you with many opportunities to gather these CPEs.
How flexible are the We take into consideration that all candidates are professionals with busy lives. However,
study group meeting this is a challenging, tough exam and requires that you meet the study deadlines and the
dates? study group meetings in order to pass the test on your first try.
How long do I have ISACA gives you access for 6 full months from the date of purchase.
access to the training
labs after completing the
course?
What happens if I don’t Our goal is to support you all the way to becoming a skilled cybersecurity professional. We
pass the exam after recommend that you take the exam within 30 days after completing the last study group
completing the Study meeting. Of course, we will be with you in every step of the way helping in any way we can.
Group Training Solution? If you fail the exam, you may purchase subsequent exam attempts. Advanced scheduling is
not required.
How do I schedule my The CSX-P exam is completed online and does not require advanced scheduling.
exam?
Can I cancel my CSX-P Once you purchase the exam voucher, exam fees cannot be refunded or transferred.
Exam?
Is there a combined No, there are two separate registration processes because the ACCELERATED CSX
registration process CYBERSECURITY PRACTITIONER CERTIFICATION SUITE is administered by ISACA
for the ACCELERATED International, while the registration for the ISACA Athens CSX-P Study Group Training
CSX CYBERSECURITY Solution must be done via the Hellenic American Union (www.hau.gr) using the registration
PRACTITIONER form at the end of this document.
CERTIFICATION SUITE
One registration combining both the ACCELERATED CSX CYBERSECURITY PRACTITIONER
and the CSX-P Study
CERTIFICATION SUITE and the CSX-P Study Group Training Solution is not possible.
Group Training Solution?
Is attending the CSX-P No, because CSX-P is not a “learn by heart” exam or a knowledge-based exam, but a
Study Group Training performance-based exam also determined by your experience in the field and your ability
Solution sufficient to follow the ACCELERATED CSX CYBERSECURITY PRACTITIONER CERTIFICATION SUITE labs.
enough for me to pass
this exam successfully?
Is passing the CSX-P No, CSX-P candidates should hold at least one of the following certifications as well: CISA,
exam sufficient to CRISC, CISM, CGEIT, ECSA, CEH, LPT, GCIH, OSCP, GPEN, CySA+, CISSP, CSX Penetration
become certified as Testing Overview (CPTO), or CSX Cybersecurity Fundamentals
CSX-P?
Or,

if the candidate does not hold at least one of the above certifications, it is recommended
that they have 3 years of experience in 3 or more of the 5 CSX-P cybersecurity domains
which align with those of the globally accepted NIST Cybersecurity Framework: Identify,
Protect, Detect, Respond and Recover.
Why is the CSX-P Study The ISACA Athens Chapter, as a non-profit organization and part of ISACA International,
Group Training Solution believes that it is our duty to help potential cybersecurity certified people get the proper,
relatively cheap? (less official preparation at the lowest cost possible. In addition, our partner in this event, the
than 22 Euros per Hellenic American Union, is also a non-profit organization, with a strong focus on education
training hour) and life-long learning programs.
Are there any special No, fees are at the lowest possible rates compared to similar training solutions offered
fees for unemployed abroad.
members of ISACA
Athens Chapter for this
course?
Payment scheme for CSX-P certification
Member Non Member Registration Paid to
Deadline
CSX-P Study Group Training €650 €850 September 15 Hellenic
Solution American Union
ACCELERATED CSX €549 €599 September 20 ISACA
CYBERSECURITY PRACTITIONER
CERTIFICATION SUITE

The above payment scheme includes

10 study group meetings (30 hours in total) and 10 hours online support from the lead
instructor

CSX Practitioner Training Material / Review Manual

6-Month Subscription to ISACA’s 10 virtual CSX-P study labs

1 CSX Practitioner Exam Voucher

Registration and payment terms:

1. CSX-P Study Group Training Solution Registration and payment of fees must be completed by
September 15.
2. Once the CSX-P Study Group Training Solution fees have been paid to the Hellenic American Union,
by September 15 at the latest, you will receive a notification from the Hellenic American Union to
proceed and register for the ACCELERATED CSX CYBERSECURITY PRACTITIONER CERTIFICATION SUITE.
3. Your registration and access to the virtual labs must be completed by September 20 at the latest.
4. The ACCELERATED CSX CYBERSECURITY PRACTITIONER CERTIFICATION SUITE fees are paid directly
to ISACA and are not refundable.
5. Participants’ cancellations for the CSX-P Study Group Training Solution must be made in writing by
September 13 to be eligible for a full refund. Thereafter, no refunds will be given.

For recertification you must take into account the following:

• Your ISACA membership renewal
• Reporting 30 CPEs every year
• Re-take the exam on the 3rd year
 Registration Form
I wish to register for the CSX-P Study Group Training Solution
Please send this registration form to Hellenic American Union fax nr. (30) 212-2222629, or at training@hau.gr.
Registration Fees Isaca Members Non Members Registration deadline

CSX-P Study Group Training Solution € 650 € 850 September 15, 2019
In order to guarantee a place in the course, delegates are kindly requested to register at least 10 working days prior to the
starting date of the course.
PARTICIPANT’S DETAILS
Fields with an asterisk (*) are required
Last Name*:
First Name*:
Company: Position:
Home Address: Postal Code:
Mobile Phone*:
E-mail Address*:
INVOICE DETAILS
If you need an invoice all fields are required
Company Name:
Type of Business:
Company Address:
Postal Code/City:
Phone/Fax:
Tax Number: Tax Office:
LAEK Subsidy YES NO
Payment Policy
Payments are made to the Hellenic American Union. For bank deposit/transfer information please contact the Hellenic
American Union. Please always quote your company’s name or the delegate’s name in the transfer instructions.
Please invoice my company: Bank Deposit/Transfer
Please charge my credit card: Visa Mastercard
Cancellation Policy
Participants’ cancellations must be made in writing by September 13 at the latest to be eligible for a full refund.
Thereafter, no refunds will be given.
Data Privacy Policy
The Hellenic American Union collects and uses the personal information that applicants provide in this registration form
to administer this training program (e.g. to prepare invoices and class rosters), to issue certificates of attendance and to
respond to participants’ requests or those of employers financing their participation in the program.
We will retain the information requested in this form in digital and/or physical form and use it only for the purposes
described above. We will keep your personal data for 5 years after the end of this training program, unless you register for
another program in the meantime.
You have the right to access the information we maintain on you, to have it corrected or ported, to object to the processing
of your personal data and to request that your data be deleted. You can exercise these rights by sending a request to the
Hellenic American Union (22 Massalias St., 10680 Athens, e-mail: privacy@hau.gr).
If you would like more information on how the Hellenic American Union processes your personal information, please
contact the Hellenic American Union’s Data Protection Officer at privacy@hau.gr or 210 368 0056.
I/We understand and agree to the registration, cancellation and data privacy policies described above.

Name/Signature Date

*
* A recognized Center for Lifelong Learning (ΚεΔιΒιΜ2) that has been granted a license of
In association with operation by the National Organization for the Certification of Qualifications and Vocational
Guidance (EOPPEP)