INSPIRING A SAFE AND SECURE CYBER WORLD

Transcription

1 INSPIRING A SAFE AND SECURE CYBER WORLD M

2 Follow us on...

3 1 STEP ONE: CHOOSE YOUR CERTIFICATION CISSP FOR SECURITY LEADERS CISSP recognises information security leaders with the knowledge and experience to design, develop and manage the overall security posture of an organisation. SPECIALISATION AREAS FOR SECURITY ARCHITECTS AND MANAGERS CISSP Concentrations recognise CISSPs who expand their knowledge into specific subject matter areas such as architecture and management. CCFP FOR CYBER FORENSICS PROFESSIONALS CCFP credential indicates expertise in forensics techniques and procedures, standards of practice, and legal and ethical principles to assure accurate, complete, and reliable digital evidence. CCSP FOR CLOUD SECURITY EXPERTS CCSP is the only credential that confirms demonstrated experience and competence in protecting and managing the security of cloud computing environments. SSCP FOR IT PROS SSCP provides confirmation of a practitioner s ability to implement, monitor and administer IT infrastructure in accordance with information security policies and procedures. CSSLP FOR SOFTWARE PROFESSIONALS CSSLP recognises the key qualifications of developers building secure software applications. HCISPP FOR HEALTHCARE PRACTITIONERS HCISPP credential confirms a practitioner s core knowledge and experience in security and privacy controls for personal health information. CERTIFYING THE WORLD S INFORMATION SECURITY PROFESSIONALS 3

4 1 CERTIFYING THE WORLD S INFORMATION SECURITY PROFESSIONALS STEP TWO: CHOOSE YOUR STUDY PLAN FREE TOOLS Exam Outline SELF STUDY TOOLS (ISC)² Practice Tests App TRAINING Webcasts (ISC)² Study Guides Training Seminar Live OnLine Boot Camp 4

5 1 STEP THREE: PASS THE EXAM Register at your local Pearson VUE Test Centres Once you pass the exam, you need to complete the endorsement process to become certified. All (ISC)² exams are based on a common body of knowledge that is recognised internationally and exam content are based on a job task analysis conducted as recommended by ISO/IEC/ANSI standards. STEP FOUR: GET YOUR ENDORSEMENT When applying for (ISC)² certification, you must be endorsed by another (ISC)² certified professional in good standing before the credential can be awarded. This requirement applies to all credentials and concentrations, even if you already hold an (ISC)² certification, as the domains for each credential vary. Once you have received your (ISC)² informing you that you have passed the exam, you will need to download and submit the Candidate Endorsement Form. The form must be completed and signed by an (ISC)² certified professional. The (ISC)² certified professional is anyone who: Is able to attest to your professional experience Is an active (ISC)² credential holder in good standing The endorser will attest that your assertions regarding professional experience are true to the best of the endorser s knowledge, and that you are in good standing within the cybersecurity industry. STEP FIVE: BECOMING AN (ISC)² MEMBER CERTIFYING THE WORLD S INFORMATION SECURITY PROFESSIONALS Once you are certified, you become a member of (ISC)². Recertification is required every three years, with ongoing requirements to maintain your credentials in good standing. This is primarily accomplished through earning CPE credits and pay an Annual Maintenance Fee (AMF). 5

6 1 CERTIFYING THE WORLD S INFORMATION SECURITY PROFESSIONALS MAINTAIN YOUR CPEs Certification CISSP CSSLP, CCFP, CCSP SSCP, CAP, HCISPP Associates ISSAP, ISSEP, ISSMP Type Annual Req. 3-Year Total Group A Group A or B Total Required Group A Group A or B Total Required Group A Group A or B Total Required Group A Total Required N/A N/A During your subsequent full 3-year certification periods for these concentrations, 20 of the 120 CPEs already required for the underlying CISSP certificate must be in the specific area of concentration. For example, if a CISSP took the ISSEP concentration examination and passed, he/she would be required to submit at least 20 of the total 120 hours required to submit for the CISSP certificate to be in the specific area of engineering. 6

7 2 MEMBER BENEFITS ACCESS TO RESOURCES Free InfoSecurity Professional member magazine and (ISC)² Blog Security Central & Threat Central online portal (ISC)² Global Information Security Workforce study, white papers, research and more Discounts on (ISC)² Official Study Guides A rich online programme of free webinars, esymposia and think tanks DEVELOP PROFESSIONALLY & NETWORK Free (ISC)² SecureEvent: one-day conferences in major cities around the world Global and regional Security Congress Member Receptions and member social media groups Access to major industry events and conferences at discounted rates GETTING THE MOST OUT OF YOUR MEMBERSHIP GET INVOLVED Local Chapters and programmes Safe and Secure Online awareness for children, parents and teachers Speaking and writing opportunities Advisory Boards and special interests programmes 7

8 2 GETTING THE MOST OUT OF YOUR MEMBERSHIP (ISC)² SECURE EVENTS Europe Middle East Africa FREE ONE-DAY CONFERENCES FOR (ISC)² MEMBERS AND CPE OPPORTUNITY These conferences have been designed as a platform for open discussion and presentation around the latest information security topics. Members tell us that the sessions are invaluable for connecting, learning and ensuring continued value within the roles that they deliver CALENDAR MANAGING RISK IN AN EVER-CHANGING THREAT LANDSCAPE EVENT CITY MONTH SecureIreland Dublin March SecureCEE Budapest April SecureNetherlands Rotterdam May SecureScandinavia Stockholm May SecureZürich Zürich May SecureTurkey Istanbul September SecureJohannesburg Johannesburg September SecureDubai Dubai November SecureLondon London December 8

9 Join us for the Second Annual (ISC)² Security Congress EMEA October 2015 Germany Sofitel Munich Bayerpost SECURE TOMORROW TODAY (ISC)² Security Congress EMEA offers attendees over 40 education sessions, designed to transcend all industry sectors, focus on current and emerging issues, best practices, and challenges facing cybersecurity leaders. As cyber threats and attacks continue to rise, the goal of (ISC)² Security Congress EMEA is to secure tomorrow today by arming them with the knowledge, tools, and expertise to protect their organisations. emeacongress.isc2.org #ISC2congressemea

10 20-21 October 2015 Germany Sofitel Munich Bayerpost 40+ Education Sessions Focussing on 6 Key Tracks Mobile and Cloud Analytics and Forensics Risk and Governance Technology, Business and the Future Privacy and Data Security Hackers and Threat Intelligence Pre-Conference Workshops Cloud Security Digital Forensics Top Reasons to Attend Front-line insights from EMEA s largest information security membership Great couple of days. I can take away excellent learning and employ this in my day job - Phil Clucas, Shop Direct Educational programme offering board review of current industry concern A unique opportunity to bring together professionals at all levels Build on training and event management experience of two industry leaders; (ISC)² and MISTI Networking receptions included an ideal chance to meet EMEA information security peers from various sectors Special discount for (ISC)² members and opportunity to earn up to 24 CPEs emeacongress.isc2.org #ISC2congressemea

11 3 Being a member of an (ISC)² chapter has its benefits. Not only will you gain a sense of fellowship with colleagues in your profession, you will also be able to network, share knowledge, exchange resources, and collaborate on projects with fellow information security professionals in your local area. There are more than 140 official chapters worldwide with 35+ based in Europe, Middle East, and Africa. CHAPTER SPOTLIGHT: (ISC)² ATLANTA CHAPTER Atlanta Chapter Lends a Hand at Security Congress If you attended last year s (ISC)² Security Congress, then there s a good chance you met members of the Atlanta Chapter. They served as session moderators, including introducing speakers on a wide variety of topics at the Georgia Congress complex. They also helped distribute and gather evaluation forms at each session and, in general, augmented staff during the annual event. (ISC)2 Atlanta was established in February, With a starting base of 20 users, the chapter has grown to nearly 200 users in the two years since the chapter s founding. Mikal Haas, the chapter president, attributes the growth to "being active in the IT security community." FEBRUARY 2015 IN THIS ISSUE: Chapter Spotlight: Atlanta Chapter (ISC)² Member Survey Annual Chapter Reports Due RSA Conference/CLM New CISSP Textbook Download Slides for (ISC) 2 Updates WORKING FOR YOUR COMMUNITY The chapter s activities pay dividends as Haas notes in two of their recent efforts. The 2014 (ISC)² Security Conference brought in thousands of attendees and the opportunity for making connections. The chapter's participation in the 2014 SecureWorld Expo also had rewards: "We had a booth and we also had a user group meeting that was one of our more successful meetings to date." In 2015, (ISC)² Atlanta became part of the advisory council of the Atlanta Interface Conference, joining national and community based organizations in this annual presentation of the latest news and developments information security and technology. Official (ISC) 2 Chapters Established in January 2015 Northeast Wisconsin (ISC)² Atlanta, in keeping with the mission to educate the next generation of information security professionals, is partnering with the Gwinnett College to bring the Global Academic Program to campus. Haas sees this as a win win: I think this has a lot of upside to both the GTC and the (ISC)² Atlanta user group. Roanoke Tacoma (ISC)² Atlanta Chapter contact information: 11

12 3 WORKING FOR YOUR COMMUNITY Whether you choose to donate, champion corporate support, volunteer, or merely spread the word, (ISC)² is your opportunity to give back and work for the future of the profession. SAFE AND SECURE ONLINE (ISC)² members wanted a way to educate the most vulnerable members of society children. The Safe and Secure Online (SSO) programme was introduced in 2006 in conjunction with Childnet International, and brings (ISC)² s information security expert members into classrooms to help children ages 7-14 learn how to protect themselves online and become responsible digital citizens. Supported by: SCHOLARSHIPS GROUP The math is simple: A high demand for skilled cyber security experts and not enough supply of qualified candidates equals a world of opportunity. The (ISC)² Foundation aims to bridge this gap by providing future information security professionals with scholarships to prepare them for a rewarding career in this important field. INDUSTRY RESEARCH: THE GLOBAL INFORMATION SECURITY WORKFORCE STUDY The (ISC)² Global Information Security Workforce Study reflects the opinions of the dynamic information security workforce. It is the largest study of its kind and provides detailed insight into important trends and opportunities within the information security profession. It aims to provide a clear understanding of pay scales, skills gaps, training requirements, corporate hiring practices, security budgets, career progression and corporate attitude toward information security that is of use to companies, hiring managers and information security professionals. GET YOUR FREE WORKFORCE STUDY 12

13 3 (ISC)² collaborates with an ever-expanding network of university partners to establish a joint framework for delivering essential skills to support the growth of a qualified information security workforce. Join a global network of colleges and universities around the world that influence the next generation information security professionals. The programme is open to accredited educational institutions that have programmes or grant degrees in the IT realm. GAP PROGRAMME FOCUS EDUCATION Provide education and training that are incorporated into an overall approach for academic curriculum development Create just in time joint academic and industry content Influence the readiness of the future IT professional Emphasise the importance of education, certification, and continual learning (CPEs), increasing workplace value RESEARCH Thought leadership collaboration (roundtables, executive panels) Workforce analysis Conference participation Track development Grant collaboration Engagement with regulatory and standards issuring boards (e.g. NIST, NICE, ISO, IEEE, CISSE, DOL) OUTREACH Connect with future IT professionals and nurture potential (ISC)² membership: Global Chapters Young Professionals Network Foundation WORKING FOR YOUR COMMUNITY 13

14 ADVISORY COUNCILS AND MEMBER-DRIVEN INITIATIVES As the largest not-for-profit membership body of certified information and software security professionals worldwide and within EMEA, (ISC)² works with its membership to support development needs within the profession, communities, academia, and government. Six regional and expert Advisory Councils managed by (ISC)² create opportunities for members to become ambassadors for the profession, become active in a variety of projects, and offer thought leadership on how we can inspire a safe and secure cyber world. Within EMEA, Advisory Councils are active in: Projects to enhance recognition of our profession and its career potential along with the academic and educational options that can support newcomers into the field. Inform the development of bodies of knowledge, skills frameworks, standards and academic accreditation to reflect the requirements of our digital society. Provide a professional perspective to policy and resilience initiative and the development of national cybersecurity strategies. Lead debate around ethical issues that affect the practice of cyber security. Global ADVISORY COUNCIL Global

15

16 Europe, Middle East and Africa 6 Hay s Lane London SE1 2HB United Kingdom Phone: +44 (0) isc2europe@isc2.org