Scipp International Formed to Provide Training

Posted on
Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone

<strong>Vienna, Va. &mdash; Aug. 22</strong><br />With the support of information security professionals around the world, a nonprofit called SCIPP International has been formed to provide security awareness training and certificate programs for corporate, government and academic end-users, including both employees and customers. <br /><br />Founded by Winn Schwartau, a pioneer and visionary in understanding the critical role of end-user awareness in securing infrastructure, SCIPP International was formed to develop and maintain the SCIPP generally accepted practices (SCIPP GAP), a common body of knowledge of security awareness best practices, and expand the role and influence of security awareness training and certificate programs for end-users.<br /><br />&ldquo;Studies have shown that up to 60 percent of all computer security breaches stem from basic user errors, more than any other single factor,&rdquo; Schwartau said. &ldquo;We formed SCIPP to gather security awareness best practices in a single repository and incorporate them into educational and certificate services for end-users and their organizations.&rdquo;<br /><br />Vetted by respected security industry veterans and subject-matter experts, the SCIPP International training and certificate programs are offered annually, with differing levels of achievement that can be tailored to fit an individual organization&rsquo;s unique policy requirements. <br /><br />SCIPP certificate of security awareness programs include those customized for corporate employees (SCIPP-CE), corporate customers (SCIPP-CC), government employees (SCIPP-GE), government citizenry (SCIPP-GC), the self-employed (SCIPP-SE) and educators (SCIPP-ED).<br /><br />Based in Vienna, Va., with offices in Old Hickory, Tenn., Hong Kong and London, SCIPP is able to effectively tailor training and certificate programs by region and make them suitable for any entity that wants to improve its security awareness or comply with regulatory or compliance mandates such as HIPAA, SOX, FISMA, GLBA, Basel II, and ISO 17799 or its equivalent national standard in various countries around the globe.<br /><br />SCIPP has assembled an international advisory board of information security leaders from many areas of expertise, including:<br /><br /><ul><li>Stephen Carrick-Davies, CEO, Childnet International</li><li>Suzanne Gorman, director of governance, Omgeo</li><li>Dr. Andy Jones, head of Security Technology Research at the Security Research Centre at British Telecommunications (BT)</li><li>Stephen R. Katz, CISSP, founder and president of Security Risk Solutions LLC·         </li><li>Micki Krause, CISSP, chief information security officer (CISO), Pacific Life Insurance Co.</li><li>Kevin Mandia, CISSP, president and CEO of Mandiant</li><li>Lynn McNulty, McNulty & Associates</li><li>William &ldquo;Bill&rdquo; Murray, CISSP, executive consultant for Cybertrust and professor at the Naval Postgraduate School</li><li>Rob Pate, deputy director of outreach and awareness at the National Cyber Security Division (NCSD) of the U.S. Department of Homeland Security</li><li>Howard Schmidt, president and CEO of R&H Security Consulting LLC and former cyber security adviser to the White House</li><li>Eugene Schultz, CISSP, CISM, chief technology officer and CISO, High Tower Software</li><li>Leo Thrush, CISSP, ISSMP, ISSEP, deputy director, Communications Programs, Office of the U.S. Secretary of Defense</li><li>Hal Tipton, CISSP, consultant</li></ul>&ldquo;By investing in security awareness for end-users/consumers, organizations greatly improve their security posture by preventing security incidents, as well as detecting and reacting to events more quickly, while reducing vulnerabilities and their associated costs in monetary and reputation damage,&rdquo; Schmidt said. &ldquo;The certificate of security awareness is an important component of the security training process because it provides organizations a level of assurance that their employees, partners and customers have successfully mastered the topics taught based upon the SCIPP GAP.&rdquo;<br /><br />Each SCIPP security awareness training and certificate program consists of four parts:<br /><br /><ul><li>An optional pre-assessment for metrics, return on investment (ROI) and improvement measurement statistics</li><li>A self-paced, three-chapter online course</li><li>A 25-question multiple choice post-assessment</li><li>A SCIPP certificate of security awareness upon successful completion <br /></li></ul><p>If desired, SCIPP will monitor and track the progress of the training and certificate program, including providing the metrics of end-users, performance and compliance.  </p><p>SCIPP certificates are valid for one year from the date of successfully completing the awareness course and passing the post-assessment.</p>

Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone


Posted in Archive|