Home >Documents >Reasons to Become CISSP Certified

Reasons to Become CISSP Certified

Date post:20-Jan-2016
View:31 times
Download:0 times
Share this document with a friend
Reasons to Become CISSP Certified. Keith A. Watson, CISSP CERIAS. Overview. Certification review Organizational needs Individual needs Get paid more! See the world! CISSP requirements Common Body of Knowledge Areas Study Suggestions. Certification Review. - PowerPoint PPT Presentation
  • Reasons to BecomeCISSP CertifiedKeith A. Watson, CISSP CERIAS

  • OverviewCertification reviewOrganizational needsIndividual needsGet paid more!See the world!CISSP requirementsCommon Body of Knowledge AreasStudy Suggestions

  • Certification ReviewMultiple types of certification available:ProfessionalVendorTechnicalEach type provides a different focusThe one right for you depends on:Your career objectivesYour time available to seek certificationYour (or your employers) budget

  • Commonalities in Certification ProgramsUnderstand a common body of knowledgePrevious education and/or work experienceDemonstrate a level of understandingCertification time periodRe-certification proceduresReinstatementDues, Fees, or Memberships

  • Professional CertificationBody of Knowledge encompasses the majority of the fieldManaged by a non-profit organizationExam requires NDARequires commitment to code of ethicsRequires endorsement and may involve an auditExamples:(ISC)2 CISSPISACA CISA and CISM

  • Organizational NeedsRisk ManagementRegulatory requirements (GLBA, HIPAA, SOX, FERPA, FISMA, DoD Directive 8570.1, etc)Insurance requirementsEvolving and emerging security threats require staff with new skills and knowledgeHuman ResourcesIndependent evaluation of knowledge and skillsMeasurable level of knowledgeDefined skill setMakes resume searching easier

  • More Organizational NeedsOrganizational MarketingBetter visibility to customers that need security expertise and servicesEasier to sell services with certified employeesCustomers may not know the acronyms, but they always seem impressed by themQuality EmployeesGeneralists (breadth of knowledge)Specialists (depth of knowledge)

  • Individual Needs:Get Paid More!Surveys by professional organizations and market research firms indicated certified employees earn more (IDC, SANS)CISSP median income: $95,155 (SANS)Salary increases outpacing other IT fields (IDC)Internally, your certification may lead to a promotion or raise, your mileage may vary

  • Individual Needs:See the World!Great demand for certified individuals around the world and in most industriesMore job postings include requirements for (or desire to obtain) certificationBecause information security is important throughout an organization, your job may evolve

  • DisadvantagesSignificant costs are involvedCISSP: $500 (exam) $85 (yearly dues)Professional training courses > $1500Time involved to prepare for examsCISSP: I studied 2 hours/day for 4 monthsProfessional training courses 5 days or longerMay not be seen as beneficial to current employer or management

  • CISSP RequirementsCommit to Code of EthicsHave required work experience (as of 1 Oct)five years relevant security work -- OR --four years work + college degreePass the Examination250 multiple choice questions; Six hoursContinuing Professional Education120 credits per three year certification periodPay yearly maintenance fee

  • CISSP CBK AreasAccess Control Systems and MethodologyApplication and Systems Development SecurityBusiness Continuity Planning and Disaster Recovery PlanningCryptographyLaw, Investigation, and Ethics

  • More CISSP CBK AreasOperations SecurityPhysical SecuritySecurity ArchitectureSecurity Management PracticesTelecommunications and Networking Security

  • Study MethodsProfessional trainingFocused, expensive, time-consumingSelf studyRead, read, readFind and use collection of sample questionsGroup studyFind a group of people that will take the test about the same timeSet an agenda; keep to a schedule

  • Keiths Suggestions for Preparing for the ExamSign up for the test today!A deadline is a great motivator for studySchedule it out no more than 6 months, if possibleCollect your study materialsBuild a library of documents in the subject areasSet time aside every day for studyAvoid taking too much time off between studyGroup study can be helpful for someFind a CISSP to help mentor

  • In summary...Certification will require significant effort on your part to master the subject areasCertification can be very beneficial to your careerYour certification can be beneficial to your employer too

  • ReferencesIDC, 2006 Information Security Workforce Study, October 2006.SANS, The SANS 2005 Information Security Salary & Career Advancement Survey, January 2006.Ronald L. Krutz, Russell D. Vines, The CISSP Prep Guide: Gold Edition, Wiley, October 2002.Harold F. Tipton, Kevin Henry, Official (ISC)2 Guide to the CISSP CBK, Auerbach, November 2006.

Popular Tags:

Click here to load reader

Embed Size (px)