(ISC)2 Recognizes Lower-Level Security Expertise
The International Information Systems Security Certification Consortium (ISC)2, the nonprofit organization that certifies information security professionals as Certified Information Systems Security Professionals (CISSPs) and Systems Security Certified Practitioners (SSCPs), has announced a new program that will help less experienced information security professionals work their way toward higher-level certifications. The Associate of (ISC)2 is designed for those who pass the CISSP or SSCP exams without the requisite levels of experience to earn those two designations.
Even without the required experienced levels, candidates who have passed either the CISSP exam or the SSCP exam have proven their ability to enter the information security career path. These exams cover the Common Body of Knowledge, or CBK, which covers best practices in information security in the following areas: security management practices; security architecture and models; access control systems and methodology; application development security; operations security; physical security; cryptography; telecommunications, network and Internet security; business continuity planning; law, investigations and ethics; and so on.
CISSP and SSCP exams are available worldwide. The CISSP is aimed at professionals who devise information security strategy and requires four years of professional experience in information security. The SSCP is meant for those who are working on tactical information security and requires one year of experience.
According to James E. Duffy, executive director of (ISC)2, the Associate program will help information security practitioners speed their career growth by helping them enter the field through formal training and testing earlier in their careers.
Once candidates have passed one of the exams and signed (ISC)2’s Code of Ethics, they still must acquire the necessary work experience before earning the CISSP or SSCP designation. Candidates must notify (ISC)2 when they have obtained the experience, at which point the Associate will receive an endorsement form that must be completed by a qualified third party, then submitted for certification. Associates of (ISC)2 must pay an annual maintenance fee of $35.
Duffy said that the Associate of (ISC)2 program is ideal for professionals who are working on acquiring their earliest field experience as well as for students who are planning a future in information security. He added that Associates will have access to career support programs from (ISC)2 including forums, communications, peer networking and additional educational opportunities.
For more information on the Associate of (ISC)2 program and its requirements, go to the (ISC)2 Web site at http://www.isc2.org.
Emily Hollis is associate editor for Certification Magazine. She can be reached at firstname.lastname@example.org.