CompTIA and Security Certification
According to a recent study on IT security by the Computing Technology Industry Association (CompTIA), organizations that invest in security training and certification for their IT workers are less likely to experience major security breaches. Almost 900 organizations participated in CompTIA’s second annual study on IT security.
Those organizations that trained at least a quarter of their IT staff in security reported fewer security breaches (46.3 percent) compared to organizations that trained less than a quarter of their IT staff in security (66 percent). Eighty percent of those organizations that have invested in IT security training feel that security has improved, and 70 percent of organizations that have invested in security certification feel the same way.
The study also revealed a 7 percent increase in organizations requiring security training—30.2 percent, compared to 23.2 percent last year. Security experience is also being required by more organizations for their new IT hires (28 percent, up from 18.8 percent last year).
In addition, the study showed that many organizations feel that vendor-neutral IT security training and certification provides a foundation for IT professionals. More than two-thirds (68 percent) said that vendor-neutral IT security training and certification is better than vendor-specific training. Even those respondents who prefer vendor-specific certification said that vendor-neutral certification helps ensure the appropriate level of knowledge.
More than 30 percent of organizations require at least half of their IT staff to be trained in security, and 15 percent require all of their IT staff to have this training. Increases in security training were reported for the director level (up 6 percent), engineering (up 14 percent), project management (up 14 percent) and product development (up 10 percent).
For more information on the study, see www.comptia.org.