CERT Introduces New Incident Handler Certification
The Software Engineering Institute’s (SEI’s) CERT Coordination Center (CERT/CC) has introduced a new certification for IT professionals who want to work in computer security incident handling: the CERT-Certified Computer Security Incident Handler.
This credential is designed for professionals working as incident handlers, computer security incident response team (CSIRT) managers, system and network administrators with incident handling experience, incident handling trainers and those who have some technical training and want to get into incident handling as a career. CERT/CC recommends at least three years of experience in incident handling before pursuing certification as an Incident Handler.
Requirements for the new certification include coursework, experience and exams. Candidates first must take four courses from the SEI. These include a one-day course on creating a CSIRT, a five-day course on information security for technicians, a five-day course in advanced incident handling and a choice of a three-day course on managing CSIRTs (for managers) or a five-day class on the fundamentals of incident handling (for technicians). Candidates must also take a non-SEI elective course in computer forensics, intrusion detection and analysis or security audits and assessments from an ABET-accredited college or university.
In addition to completing the coursework, candidates must have three years of experience, either managerial or technical, in incident handling. They must also provide a letter of recommendation from a current or previous manager. Finally, candidates must successfully pass an exam administered by the SEI. Candidates will be charged the $150 fee when they apply to take the exam. Those who don’t pass on the first try can take the test one more time without paying an additional fee.
The Incident Handler certification is good for three years, and the application fee for renewal, like the exam application fee, is $150. To renew the certification, certificants must acquire five CEUs (credits for continuing education) in computer forensics, intrusion detection and analysis or security audits and assessments. Also, certificants must prove two years of experience performing incident handling or management functions for an organization or conducting research in computer security at an ABET-accredited university or at a federally funded research and development lab.
For more information on this new security certification option, check out http://www.cert.org/certification.
Emily Hollis is associate editor for Certification Magazine. She can be reached at email@example.com.