TruSecure Introduces New Security Certs

Posted on
Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone

TruSecure Launches Security Certification



TruSecure Corp. announced a new certification program, adding to its
programs that certify products and organizations. The TruSecure ICSA
Certified Security Associate (T.I.C.S.A.) is the first of two certifications
that will certify security knowledge. The second, TruSecure ICSA
Certified Security Expert (T.I.C.S.E.), will be available later this year.  



“TruSecure has a major division called ICSA labs, which is the leading
third-party product certification organization in the security market,”
said Bob Flinton, director of product marketing for TruSecure.
“TruSecure does a similar thing from a corporate perspective. We work
with companies to get them into a more secure posture—implementing
essential security practices. …We’re applying a similar method to
practitioners with T.I.C.S.A. certification. We evaluate them on the
essential levels of security knowledge.”



T.I.C.S.A. certification is a vendor-neutral program for IT personnel who
manage network infrastructure and want to gain security expertise.
Qualified candidates should have two years of experience. To earn the
credential, candidates must complete 48 hours of approved training,
agree to a code of ethics and pass a multiple-choice exam. The
certification is valid for two years. 



“Unlike a lot of security certifications out there, this one is designed
for the IT practitioner, the person who is responsible for multiple
things in their IT environment, security being one of them,” said
Flinton. “They most likely don’t have ‘security’ in their title, but
they are responsible for security-related services in their systems.
…This is geared toward the much broader IT community out there who see
security as increasingly important in their company from the front-line



T.I.C.S.A. candidates are tested in 13 Essential Categories of Knowledge:
essential versus “best” security practices; risk management; TCP/IP
networking basics; firewall fundamentals; incident response and
recovery; administration/maintenance procedures; design and
configuration; malicious code mechanisms; law, ethics and policy issues;
authentication techniques; cryptography basics; host- versus network-
based security; public key infrastructure (PKI) and digital certificate
basics; and operating system security. 



The International Information Systems Security Certification Consortium
(ISC)2 has endorsed the foundation-level T.I.C.S.A. certification. (ISC)2’s
Certified Information Systems Security Professional (CISSP) credential
is designed for executive-level security practitioners, representing a
higher rung on the security certification ladder.



“CISSP is at the professional level—those are the folks sitting at the
high end defining the security policy at a company,” said Flinton. “I
would picture a CISSP hiring a bunch of TICSAs, who have the
responsibility of implementing these policies. …The way we and CISSP
view it is T.I.C.S.A. is an excellent foundation or stepping-stone toward
something like CISSP.”



The T.I.C.S.A. exam can be taken at Prometric testing centers in North
America. The 70-question exam costs $295 and must be completed in 90
minutes. TruSecure won’t provide training for the certification, but
will authorize training organizations as Certified T.I.C.S.A. Trainers and
Authorized T.I.C.S.A. Trainers. So far, Global Knowledge is the only
Certified T.I.C.S.A. Trainer, but you can expect to see more as the program



For more information, see


Practice Makes Perfect



According to Certification Magazine’s 2002 Salary Survey, the second
most commonly used certification prep materials are practice exams.
Sixty-eight percent of survey respondents used practice tests. Why are
these materials so pervasive? Perhaps because they offer some insurance
and added confidence before you walk into the test center—if you can
pass a practice test, you should be able to pass the real exam.



Practice tests offer features and feedback to help you know what to
study. Some provide feedback on missed questions and might even point to
additional study resources. And some practice exams break down the
results by objective, so you can see where your knowledge is lacking.
The best practice tests include a large number of questions and answers
that are given randomly, so you don’t see the same test twice.



How do you add practice tests to your certification preparation regimen?
First, before you start studying, take a practice test to assess your
knowledge. This will give you an idea of your strong and weak areas.
Dedicate extra study time to areas where you missed more questions.



Once you’ve completed your study, retake the practice test to assess
your exam readiness. Carefully review the questions you got wrong. Are
your missed questions concentrated in one objective? If so, you need to
review that topic. Take and retake the practice exam until you pass by a
decent margin.



There are plenty of options out there for practice tests—from free
online practice exams to well-known commercial offerings. Most vendors
of practice exams offer demos: Check these out before making a decision.
Go with the one that feels right to you. Here is a list of some practice
test vendors:




Share on Google+Share on LinkedInShare on FacebookShare on RedditTweet about this on TwitterEmail this to someone


Posted in Archive|