Certification is on the mind of many security professionals, and the recent Computer Security Institute conference devoted much attention to the topic. In one session, Peter Stephenson of Eastern Michigan University's Center for Regional and National Security presented an overview of what certifications can do for you and which ones, if any, you should have.
Stephenson holds the Certified Information Systems Security Professional (CISSP), Certified Information Forensics Investigator (CIFI), Certified Information Security Manager (CISM) and Fellow of the Institute for Communications, Arbitration and Forensics (FICAF) in the United Kingdom. However, he holds a somewhat cynical view of certifications.
"By themselves, they prove nothing," Stephenson says of certifications. They're filters for employers and lucrative revenue for the training and certification industry. A tech veteran with nearly 40 years of experience, Stephenson obtained his first certification in 2002 to help him put food on the table. The one designation he pursued because of the challenge was the FICAF, which requires election by your peers.
What follows are his recommendations for when a security certification might be necessary and which ones are appropriate choices for these groups.
- Technicians and engineers: Consider certification if the training required for the certification is necessary to perform job duties. SANs Global Information Assurance Certification (GIAC), a field-specific certification such as International Information Systems Forensics Association (IISFA), CIFI; vendor-specific designations from Cisco, Internet Security Systems or Microsoft, or CompTIA's Security +, for example.
- Technical manager: Pursue when the job requires one. Certifications to get include CISSP, CISM, field-specific, or possibly SANs GIAC.
- Senior manager: Consider when the job requires, or pursue when you want one. Examples include high-level certifications such as the ICAF for mature professionals.
To keep your skills current and meet continuing education requirements, considera course from a Training Institute as well as specialized conferences and symposiums.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Discover the advantages of an open architecture multi-vendor network solution
Solve Exchange Mailbox Storage Issues Once and for All
How to improve employee productivity in small and medium businesses
Making the Business Case for IT Consolidation
Data grids and service-oriented architecture
IT Service Management Needs and Adoption Trends: An Analysis of a Global Survey of IT Executives
Delivering the Power of Choice with Microsoft Dynamics CRM
Achieving the impossible: Unlimited application scalability
Zones provide focussed content from Computerworld and leading technology partners.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
Sterling Commerce Speeds Long-Distance Delivery of Large Files 2008-12-03 09:28:00+11
FrontRange Solutions launches HEAT Plus Mobile to reduce help desk costs and improve service management productivity 2008-12-02 15:15:00+11
AARNet Helps to Advance Indigenous Health 2008-12-02 12:44:00+11
Orbis selects Telstra International as its data centre partner for the UK, Europe and Middle East Region 2008-12-02 11:23:00+11
ComOps Deploys Corporate Performance Reporting Solution For Healthcare Test Manufacturer 2008-12-02 10:09:00+11
Strategies for Eliminating .PST Files
Join industry expert Martin Tuip to discover best practice strategy for the archival and removal of .PST files using email archiving. Learn how to ensure long-term email records are there when needed, and reduce the risk to your business and clients.
Buying Guides
Latest Products
Buying Guides
