Topics covered in the CPP Study Group

Business principles and practices

Business finance principles and financial reporting
Calculation & interpretation of return on investment (ROI)
Candidate selection and evaluation techniques
Communication strategies, methods, and techniques
Confidential information protection techniques and methods
Data analysis techniques and ROI
Generally accepted ethical principles
Good governance standards
Guidelines for individual and corporate behavior
Human capital management
Interpersonal and feedback techniques
Interview techniques for staffing
Job analysis processes
Preventive and corrective maintenance for systems
Principles and techniques of policy/procedures development
Principles of management accounting, control, and audits
Techniques for quantifying productivity/metrics/key performance indicators (KPI)
The lifecycle for budget planning purposes
The principles of performance evaluations, 360 reviews, and coaching
Training strategies, methodologies, techniques and resources

Crisis management

All hazards by type, likelihood of occurrence, and consequences
Communication techniques
Cost - benefit analysis
Emergency operations center (EOC) concepts and design
Emergency operations center (EOC) management principles & practices
Emergency planning techniques
Making the business case to management
Mitigation opportunities in the recovery process
Mitigation strategies
Primary roles and duties in an incident command structure
Recovery assistance resources
Resource management techniques
Risk management and business impact analysis methodology
Short and long-term recovery strategies
Training and exercise techniques

Information security

Budgetary projection development process
Building and system plans, drawings, and schematics
Cost benefit/analysis methodology including asset identification and valuation, threat analysis, vulnerability assessment and consequence/impact recognition.
Current methods used to compromise information
Current trends and techniques for compromising information
Due diligence investigations for programs, projects and specific transactions
Final acceptance and testing procedures, information systems, assessment, and security program documentation
Information security theory, terminology and systems methodology
Laws pertaining to protection requirements for proprietary information and intellectual property
Monitoring, audit and testing techniques
Principles of management
Project management techniques
Protection measures, equipment, and techniques; including information security processes, systems for physical access, data control, management, and information destruction
Protection technology, equipment, investigations, and procedures
Security survey and risk assessment methodology, qualitative and quantitative risk analysis, protective measures cost-benefit analysis
Security survey/assessment methodology
Systems integration techniques
Threats and vulnerabilities assessment analysis and mitigation
Training and awareness methodologies and procedures
Vendor evaluation and selection process

Investigations

Arson and criminal damage crimes
Computer based and internet crimes
Evidence collection techniques
Financial and fraud related crimes
Methods and techniques of eliciting information
Methods for preservation of evidence
Organizational objectives and interdepartmental liaison
Principles and techniques of policy and procedure development
Proprietary information and industrial espionage crimes
Protection/preservation of crime scene
Relevant sources of investigation
Report preparation for internal and court purposes
Required components of written statements
Requirements of chain of custody
Surveillance techniques
Techniques for detecting deception
Technology/equipment and human resources
The nature of non-verbal communication
The use of human rights codes for cautioned statements

Personnel security

Background investigations and employment screening techniques
Educational and awareness program design and implementation
Executive protection techniques and methods
Information source quality and types
Intervention and response tactics
Liaison and resource management techniques
Protection techniques and methods
Risk analysis
Selection, costs, and effectiveness of proprietary and contract executive protection personnel
Threat assessment analysis
Travel security programs

Physical security

Audit and testing techniques
Bid package development and evaluation process
Budgetary projection development process
Building plans, drawings, and schematics
Cost - benefit analysis techniques
Countermeasures
Final acceptance and testing procedures
Fundamentals of security system design
Project management techniques
Protection technology and systems
Risk assessment techniques
Survey techniques
Types and applications of, and protection offered by protection equipment
Vendor qualification and selection process

Security principles and practices

Available security-related technology
Communication strategies, techniques and methods
Cost benefit analysis methods
Data collection and trend analysis techniques
Methods for creating effective working relationships
Principles of planning, organization, and control
Quantitative and qualitative risk assessments
Roles and responsibilities of external organization and agencies
Security theory, techniques, and processes
Techniques and protocols of liaison
Training methodologies
Vulnerability analyses