Understanding the Federal IT Security Professional (FITSP) Certification

Similar documents
Understanding the Federal Cyber Security Professional (FCSP) Certifications

FITSP-Auditor Candidate Exam Guide

Social Media Security Training and Certifications. Stay Ahead. Get Certified. Ultimate Knowledge Institute. ultimateknowledge.com

State of South Carolina InfoSec and Privacy Career Path Model

TOPSECRETPROTECTION.COM (TSP)

Certification and Training

Enhancing NASA Cyber Security Awareness From the C-Suite to the End-User

FedVTE Training Catalog SPRING advance. Free cybersecurity training for government personnel. fedvte.usalearning.gov

Information Systems Security Engineering Professional (ISSEP)

IT and Cybersecurity. Workforce Development with CompTIA Certification

Kevin Savoy, CPA, CISA, CISSP Director of Information Technology Audits Brian Daniels, CISA, GCFA Senior IT Auditor

Security Transcends Technology

Information Security Workforce Development Matrix Initiative. FISSEA 23 rd Annual Conference March 23, 2010

InfoSec Academy Application & Secure Code Track

FedVTE Training Catalog SUMMER advance. Free cybersecurity training for government personnel. fedvte.usalearning.gov

Information Security Principles and Practices

ISACA Tools Help Develop Cybersecurity Expertise

ISACA ON-SITE TRAINING DELIVERS EXPERT INSTRUCTION AT YOUR WORKPLACE

INSIGHTS AND RESOURCES FOR THE CYBERSECURITY PROFESSIONAL

The Value of Information Security Certifications

IA Personnel Readiness: Training, Certification and Workforce Management

PROVING YOUR GRC KNOWLEDGE WITH CERTIFICATIONS

Access FedVTE online at: fedvte.usalearning.gov

Course and Service Portfolio Specialized IT courses for IT professional and organizations willing to take benefit from the competitive advantages

ISACA Singapore Chapter

Over 20 years experience in Information Security Management, Risk Management, Third Party Oversight and IT Audit.

InfoSec Academy Pen Testing & Hacking Track

CONTINUING PROFESSIONAL EDUCATION (CPE) POLICIES & GUIDELINES

ISACA S CYBERSECURITY NEXUS (CSX) October 2015

All about CPEs. David Gittens CISA CISM CISSP CRISC HISP

COBIT 5 Implementation Certifi cate. Training Course & Exam

ISO 55001:2014 Asset Management System 5-Day Training Course (IAM Certified)

Why CISM? Who Earns CISM Certification? CISA, CISM and CGEIT Program Accreditation Renewed Under ISO/IEC 17024:2003

KEY TRENDS AND DRIVERS OF SECURITY

IT Governance Implementation Workshop

Profil stručnjaka za informacijsku sigurnost - certificirati se ili ne? Biljana Cerin, CISA, CISM, CGEIT, CBCP, PMP

Inside this issue: WHAT TO DO ABOUT EXPIRED CERTIFICATIONS IN ATCTS

Information Security and Privacy. Lynn McNulty, CISSP. Advisory Board November 2008

Operationally Focused CYBER Training Framework

HP Cyber Security Control Cyber Insight & Defence

CompTIA Certification Renewal Policy and Continuing Education (CE) Program. Kyle Gingrich Senior Director, Product Management

InfoSec Academy Forensics Track

Certification for Information System Security Professional (CISSP)

DoD Directive (DoDD) 8570 & GIAC Certification

DoD Financial Management Certification Program

A Contrarian Risk Management Perspective. Nicole Keaton SVP Identity & Access Management CGEIT CISA CISM

Hackers are here. Where are you?

Trends in Information Technology (IT) Auditing

Field of Study Area of Expertise Certification Vendor Course

Val-EdTM. Valiant Technologies Education & Training Services. 2-day Workshop on Business Continuity & Disaster Recovery Planning

Table of Contents EXECUTIVE SUMMARY ACKNOWLEDGEMENT AND DISCLAIMERS ENGAGEMENT SCOPE AND OBJECTIVES EXECUTIVE SUMMARY OF ASSESSMENT RESULTS

Application Kit. A Guide to the AICPA Certified Information Technology Professional Credential

Re: Experience with the Framework for Improving Critical Infrastructure Cybersecurity ( Framework )

ONLINE MASTER OF BUSINESS ADMINISTRATION. Open for Business. Designed for You.

IRAP Policy and Procedures up to date as of 16 September 2014.

September 24, Mr. Hogan and Ms. Newton:

Cybersecurity Workforce Training Partnership

Update on the CSSLP And its Impact on the SDLC Profession. Hart Rossman, CSSLP Member, (ISC) 2 Application Security Advisory Board

EC-Council Certified Security Analyst (ECSA)

IT Security Training. Why Security Certification? A Serious Business - Fear Drives the Demand High Demand Freedom to Make and Break Rules

CompTIA CASP Pre-approved Training for CompTIA CASP Continuing Education Units (CEUs)

SUBJECT: Training Policy-04 (Revised) Defense Finance and Accounting Service Civilian Licenses, Certifications and Related Expenses

University of Maryland University College. American Military University. Henley-Putnam University

CYBERSECURITY: ISSUES AND ISACA S RESPONSE

EXAM PREPARATION GUIDE

Forensic Certifications

Presented by Frederick J. Santarsiere

Work Toward Your Bachelor s Degree

Commonwealth Information Security Officers Advisory Group (ISOAG) Meeting

Cyber Security Consultancy Standard. Version 0.2 Crown Copyright 2015 All Rights Reserved. Page 1 of 13

Information Security Specialist Training on the Basis of ISO/IEC 27002

The following chart indicates the Career Academy courses eligible for transfer credit by challenge exam.

Statement for the Record. Submitted by Denise Roosendaal, CAE Executive Director, Institute for Credentialing Excellence (ICE)

Achieving Governance, Risk and Compliance Requirements with HISP Certification Course

Hackers are here. Where are you?

The Standard for Laundry Managers

The Premier IA & Cyber Security Training Specialist

ISQ Handbook. Security. Information. Qualifications. An in-depth coverage of vendor and vendor-neutral qualifications

Cybercrime & Cybersecurity: the Ongoing Battle International Hellenic University

Introducing... FedVTE and FedCTE

The enemies ashore Vulnerabilities & hackers: A relationship that works

Terms of Reference for an IT Audit of

ROY A. SWIFT, Ph.D., FAOTA Phone: Fax:

HRIP Recertification Program Guide

SPSP Phase III Recruiting, Selecting, and Developing Secure Power Systems Professionals: Job Profiles

Transcription:

Understanding the Federal IT Security Professional (FITSP) Certification Jim Wiggins Executive Director Federal IT Security Institute ISACA NCAC Conference Certification and Emerging Standards Holiday Inn Rosslyn 3/25/14

Speaker Introduction What is FITSI? Why a Federal Focused Credential? FITSP Overview Certification Roles Candidate Requirements Domains Exam Details Recertification Requirements Maintenance Details Audits Program Updates ANSI Accreditation / 8570 Training Opportunities Questions? Overview

Speaker Introduction Mr. Jim Wiggins Cyber Security Trainer and Information Assurance Practitioner 17 years of experience in IT 13 years of experience in IT security Federal Information System Security Association (FISSEA) Educator of the Year for 2010 ISACA NCAC V. Lee Conyers Award for 2012 holds the following IA/IT security certifications: FITSP-M, CISSP, ISSEP, CISM, CISA, SCNA, SCNP, CAP, IAM, IEM, SSCP, CEH, ECSA, CHFI, LPT, TICSA, CIWSA, Security+, and MCSE: Security

What is FITSI? FITSI = Federal IT Security Institute Founded in 2009 1200+ members 501c6 non-profit organization Focused on education and certifying the federal workforce Supports local chapters FITSI-DC FITSI-CO FITSI-SC Supports the FITSI Foundation 501c3 Setup for charitable, research and education in the cybersecurity market

What is FITSI? FITSI Foundation Setup to support Wounded Warrior Cyber Combat Academy Build the Next Generation of Cyber Defenders Retain Wounded Warriors in the ways of cybersecurity

FITSI Activities Chapter events Free online webinars Discounted training FITSP certification program What is FITSI?

Why a Federally Focused Credential? Many high quality IT security certifications on the market Not focused on the unique requirements of: Federal sector Federal workforce Based upon international best practices Many are one size fits all programs CISO and system engineer might obtain the same credential

Why a Federally Focused Credential? All sectors of the government are adopting one standard Joint Task Force Transformation Initiative U.S. Department of Defense Office of the Director of National Intelligence National Institute of Standards and Technology Committee on National Security Systems NIST Risk Management Framework

FITSP Overview Federal IT Security Professional (FITSP) An IT security certification program Role-based Targeted at the Federal workforce Civilian personnel Military Contractors Complements the knowledge, skills and abilities of other generalist security certifications Based upon the standards and practices used by the United States Federal government NIST, OMB, Congressional mandates

Role-based program Manager - Oversight Designer - Builds Operator - Maintains Auditor - Reviews Certification Roles

Candidate Requirements Candidates must have five years of IT security experience Can waive up to two years Bachelors in IT or IT security Master s degree in IT or IT security Existing certification Must document experience Formal application process

Domains Six areas of knowledge NIST Special Publications NIST Federal Information Processing Standards NIST Control Families NIST Risk Management Framework Government Laws and Regulations NIST Interagency Reports Each role has different concentration and focus of these domains Refer to the FITSI Candidate Handbook for each role on FITSI.ORG for a breakdown of these domains

Computer-based exam 180-minute 150 multiple choice questions Many of the questions are small scenarios Allow the FITSI candidate to demonstrate the level of experience and proficiency the have achieved Instant knowledge of results Pass or fail Current cost of exam $295 per attempt FITSI membership is not required Exam Details

Recertification Requirements Certification is good for three years Must earn 60 CPEs each three years to maintain currency FITSI has published guidance on the private member site on how to earn and report CPEs Must pay a $45 Annual Maintenance Fee (AMF)

Maintenance Details Must earn 60 CPEs over 3 year period Examples Attend security conferences - 1 CPE for each hour of IT security discussion covered in the conference Attend security training classes - 1 CPE for each hour of instruction. These classes can be instructor lead (ILT), online or computer based training modules (CBTs). Publish security whitepapers - 1 CPE for each hour writing a whitepaper not to exceed 5 CPE per published whitepaper Publish security books - 1 CPE for each hour writing a book not to exceed 30 CPEs per published book Provide IT security training classes - 3 hours of prep time for each hour of in-class time Provide NIST commentary on draft documents - 1 CPE for each hour of working on submitting commentary not to exceed 5 CPE per activity

All members are subject to potential audits Experience background Reported CPEs each year Audits

Program Updates Content is updated on a yearly basis Members and certification holders are asked to make recommendations on newer guidance and standards Leverage three primary areas for updates Congress OMB NIST

ANSI Accreditation / 8570 ANSI provides accreditation to certification bodies under ISO 17024 FITSI has applied for ANSI Accreditation FITSP-Manager Working with ANSI Assessors to determine nonconformities and required program changes ANSI Accreditation is the first step towards 8570 All certifications on the 8570 are required to be ANSI accredited

Training Opportunities Classes are run both through FITSI and Authorized Training Partner FITSI Authorized Training Center Program SecureNinja Knowlogy Cybersecurity Academy Securible, LLC

Questions and Answers Questions?

Contact Information Speaker Information Jim Wiggins Work: 703-828-1196 x701 Cell: 571-277-4661 Email: jim.wiggins@fitsi.org FITSI Information Federal IT Security Institute 3213 Duke St #190 Alexandria, VA 22314 http://www.fitsi.org Phone: 703-828-1196

Speaker Introduction What is FITSI? Why a Federal Focused Credential? FITSP Overview Certification Roles Candidate Requirements Domains Exam Details Recertification Requirements Maintenance Details Audits Program Updates ANSI Accreditation / 8570 Training Opportunities Questions? Recap

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information