Financial Sector Embraces Risk Reduction Through Training and Certification
The Financial Services Information Sharing and Analysis Center (FS-ISAC), a nonprofit, member-owned organization that is the only industry forum for collaboration on critical security threats facing the financial services sector, has unveiled its 2009 professional training and certification initiative.
The FS-ISAC has negotiated special member-only pricing for training and certification services offered by the International Information Systems Security Certification Consortium [(ISC)2], IEEE’s Computer Society (IEEE-CS), the Business Continuity Institute (BCI) and SCIPP International.
“We were tasked by our membership to form an education committee whose objective is to continually assess member and industry needs, and identify educational services that would provide maximum benefit to individuals and companies alike,” said Bill Nelson, president and CEO of the FS-ISAC.
“Through education and validation of knowledge and skills measured against a global standard, the financial sector is taking critical steps toward mitigating operational risk leading to a more secure and resilient information supply chain.”
Comprised of some of the most well-respected leaders in the financial service industry, the committee identified critical functions within a typical organization that have the greatest overall impact on risk reduction: information security, software and Web application development, business continuity and security awareness.
There are more than a dozen certifications initially offered in the initiative, including the “gold standard” for IT security, the CISSP, as well as each of the CISSP concentrations, and (ISC)2’s newest credential, the Certified Secure Software Lifecycle Professional (CSSLP) that validates an individual’s competency in addressing security issues throughout the software lifecycle.
Additionally, the committee tapped BCI, a globally recognized leader in the business continuity management field; SCIPP International, a global security awareness training organization; and IEEE, the world's largest membership organization for computing professionals, for its Certified Software Development Professional (CSDP), which validates professional knowledge and skills in the software development discipline.
“Protecting information assets is one of the most profound issues facing the financial industry today,” said Dow Williamson, executive director of SCIPP International and a 25-year veteran of the information security field.
“As studies have shown, people are the most important link to ensuring a secure and resilient environment. Effective training and independent assessment of skills, knowledge and experience will provide companies and individuals with quantifiable and verifiable measures to demonstrate the professional expertise needed to perform and protect their most valuable assets.”
Nelson concluded: “There is little doubt that professional education and certification is the key to securing the information supply chain. We are confident that by investing in training and certification services like the ones offered in this initiative, financial institutions will greatly reduce their exposure to potential breaches and other security risk.”
It is important to note that this program has been developed to provide only active FS-ISAC members with special discounts of up to 40 percent off of (ISC)2, IEEE, BCI and SCIPP licensed training.
For information about training schedules, locations, costs and certification requirements, visit: www.fsisac.com/training.