Welcome to cissp CISSP training Certified Information Systems Security Professional
Search
Nickname Password Security Code Security Code Type Security Code  

Best training in the world

CCCure Quiz Engine

Rated #1 Training

Best hacking and penetration testing magazine in the world

Library of Documents

Forum Postings

CISSP's Blogs

Here is a list of Blogs maintained by CISSP's.

SECURITY JOBS

- Information Security Jobs

ISC2 BLOGS

- Official ISC2 Blog

CISSP's BLOGS

- Allen Baranov
- Andy Willingham
- Anton Aylward
- Benjamin Tomhave
- Bob Johnston
- Chad McDonald
- CSCI Blog
- Daniel Accioly Rosa
- Dave Lewis
- Donald Glass
- Gary Hinson
- Martin McKeay
- Michael Ehart
- Michael Santarcangelo Security Catalyst
- Peter Gregory
- Rebecca Herold
- Shaun Balkum
- Vijay Upadhyaya
- Vincent Arnold 

LEGAL INFO BLOGS

- Bow Tie Law's Blog
- Chilling Effects Clearinghouse
- Cyber Law Update
- Digestible Law
- Law.Com Daily Alerts
- Law.Com Technology News
- Law.Com
- International Legal News
- Lessig Blog
- Michael Overly
- NCSL info site
- The Gray Blog

ISO 27001 & BS 25999

- Dejan Kosutic

You know of a blog that is not listed, please Click Here to send us the link

Recommended Podcasts

MISC Menu

Security Books

Surveys

Where do you find the best price for books?

Amazon.Com
Bookpool.Com
The ISC2 webstore
CISSPS.COM
Cheapbooks.com
Ecampus.com
Other (Please leave a comment with name of site)



Results
Polls

Votes 1758

Top10 Links

Top10 Downloads

Who's Online

There are currently, 65 guest(s) and 5 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
cissp CISSP training Certified Information Systems Security Professional: Training News

Search on This Topic:   
[ Go to Home | Select a New Topic ]

Security Kaizen Magazine Issue 4 is released
Posted by boss on Friday, 03 February 2012 @ 14:52:58 EST (37 reads)
Topic Training News

cdupuis writes "
Security Kaizen Magazine Yearly issue.
An issue that you shouldn't miss
In Egypt : 30 % discount Coupon for EC council Courses inside the Printed Copy.

Printed Copy Request
Coming Soon : Arabic Version


"

(Read More... | Score: 0)


Live Online CISSP Boot Camp at 1/2 the price of our Live Classroom Boot Camp
Posted by boss on Wednesday, 21 December 2011 @ 21:45:54 EST (439 reads)
Topic Training News

cdupuis writes "
CISSP ® LIVE OnLine
Secure Ninja cccure.org
Get Certified and Save Big with Secure Ninja's Buy One Get One Promo
  • Accessible from any Location
  • No Daily Commute in traffic
  • No Airfare Fees
  • No Hotel fees
  • Same quality of delivery as a brick and mortar class
  • All sessions are recorded
  • Listen as many times as you wish
  • Do it from the comfort of your home
  • Let Clement guide you to success (pre-present-post mentoring)
  • 5 Day CISSP Immersion Training
  • Award Winning Proprietary Curriculum
  • Highest CISSP Exam Pass Rates
  • Day, Evening,Weekend & Live Online classes to meet your busy schedule
  • Pre/Present/Post Class Paid Account to CCCure Quiz Engine (World's best CISSP 2000+ exam questions)
  • Exclusive CISSP Scenario Based Exam Questions
  • Get DoD 8570.1-M CISSP Compliant
  • WIA (Workforce Investment Act) Approved
  • Veterans Benefits & GI Bill Approved - Welcome Military!
  • Option to resit  Live Online CISSP class for up to one (1) year
Clement Dupuis, CD
Your Live Online mentor Before, During & After class
Secure Ninja @ Linkedin See Us @ Youtube Like us on Facebook Fallow us Twitter

Get Live Online Instructor Led Learning for 1/2 the price of our Classroom Based Boot Camps.
Book it Now
Class is filling fast. Call Enrique to secure your seat today.

Phone: +1 703 535 8600 x16
Mobile: +1 305 467 7436

Enrique@secureninja.com
Secure Ninja
901 North Pitt St. Suite 105
Alexandria, VA 22314
 Phone: 703.535.8600
Fax: 703.535.8656
Email : info@secureninja.com
"

(Read More... | Score: 0)


SecureNinja declared co-winner of SC Magazine 2012 Awards
Posted by boss on Wednesday, 09 November 2011 @ 09:32:27 EST (581 reads)
Topic Training News

Anonymous writes "

Good day Ninja’s,

We are proud to announce that Secure Ninja has been declared co-winner of  SC Magazine 2012 Awards for Best Professional Information Security Training Program.  

That is the 2nd award within a 1 month period for Secure Ninja! 

At Hacker Halted a week ago we won the prize for Best Newcomer ATC of the year.

We would like to thank all our students, instructors, partners, and supporters who made this possible.

We look forward to continue serving you throughout 2012 with the same commitment to quality of delivery and content.

Best regards

Clement

 

Best Professional Information Security Training Program

SC Magazine winner of best security training award

Best Newcomer Authorized Training Center (ATC) of the year from EC-Council


  Best ATC of the year from EC-Council at hacker halted

"

(Read More... | Score: 0)


How to choose your training provider?
Posted by boss on Tuesday, 05 July 2011 @ 21:00:31 EDT (901 reads)
Topic Training News

cdupuis writes "

Good day to all,

I was recently asked how can I select my training provider and how do I see clearly through the fog being presented by all the vendors out there.  This is a very good questions,  I will try to address the point below and give you some pointers as to what criterias you should use to select your provider.

The problem with certifications is that anyone who wishes can come out with their own certifications, over the past six months alone I have seen at least 4 different families of certification being released. There are more than 150 security certifications out there.  Beware of company that likes to make themselves look a lot bigger than they are by presenting to you a large collectioon of certifications that has little value or will not be recognized by government departments, commercial companies, head hunters, or anyone else. 

Online you can claim to be anything you wish to be. You can make your company look as big as you wish to make it look. You can make as many claim as you wish to make. It is all virtual, it is all pages sitting on a server or DB somewhere.  You don`t need to have any substance behind it, you only need to pretend you are the best and convince people to take your certification instead of other ones that exists out there.

Even certifications who received the prestigious ISO 17024 accreditation are not guaranteed to have any substance. Simply because they do not look at the content, they look at the way it is managed, separation of duties, etc... The content and it's relevance is NOT evaluated.

Choosing the proper provider and the proper instructor is key when going for training or certification training. A good instructor can turn an average package into a great training experience. A bad instructor cannot even make a great training package into one that is worth doing.  Always ensure you know your instructor name ahead of the class and get his name in writing.   I have seen many case where one instructor is promised and another one will deliver the actual class.  Some training companies will go as far as telling you they cannot tell you who the instructor will be.  This is complete nonsense,  would you buy a ticker for a show where the company selling you the ticket would refuse to tell you the artist name???

Just like anything else you buy you must do your homework. In many of the states you are free to call yourself a UNIVERSITY, an ENGINEER, an ACADEMY, a CAMPUS, or other great names without being a real institution as perceived by people. So you must validate the education facility you are going to work with and the claim they make regardless of who they are. Check the following:

1. How long they have been in business?

2. Are they profitable or not?

3. Where are their physical location?

4. Take the time to visit their location unannounced to see how well organize they are on a day to day basis and what their facility looks like. Do they have their own classrooms, offices, etc.... or are they selling wind and these only exists on their web site.

5. See what they have for support staff such as sales team, operation team, network and system support for their classrooms and offices. It is a good way of discovering if the company is a one person show or really has a team that will support you in your education effort.

6. Look at who they have on their team. Write directly to each of the instructor and team member to see how responsive they are, ask each of them how many classes a year they do for the company, what classes they are doing.  It is easy to have dozens of names on a website but do they teach one class every year, one class once in a while, are they lending their names only, or are they maintaining their skills by teaching regularly and by being active member of the team as partial owners or equity holders. Else they are just 1099 consultants coming in and out as they are paid for.  Do not expect any help once the class is over.

7. Look at public certification forums and do a search for the company name and ask other who have taken the training what they think?

8. Do not go with hearsay, get the info yourself

9. What differentiators do they offer compare to others providers?

10. Do they offer gadgets like IPOD, IPAD, or do they offer content, content, content. 

11. Search job board for their certification name and see if it is requested or in demand.

12. Search Google and other search engine to see what penetration they have in the market.

13. Do not choose strictly on price, it would be like buying a pair of BOSE speaker versus a pair of Radio Shack speaker. You get what you pay for.

In short you must do Due Diligence because few companies are really doing the right thing which is being focused on Education first instead of being focused only on profit.

Best regards

Clement

"

(Read More... | Score: 0)


NATO Cooperative Cyber Defence Centre of Excellence New book released for FREE
Posted by boss on Tuesday, 05 July 2011 @ 20:17:10 EDT (1213 reads)
Topic Training News

cdupuis writes "

NATO Cooperative Cyber Defence Centre of Excellence
5.07.2011

New NATO CCD COE book available for download

Title: Strategic Cyber Security
Author: Kenneth Geers
PDF, ePub: www.ccdcoe.org/278.html
Hard copy: publications@ccdcoe.org
Pages: 169

This book argues that computer security has evolved from a technical discipline to a strategic concept, and that strategic challenges require strategic solutions.

Dr. Geers examines, evaluates and prioritizes four likely nation-state approaches to mitigate the cyber attack threat and to improve a nation’s cyber defense posture:

•       Internet Protocol version 6 (IPv6)
•       Sun Tzu’s Art of War
•       Cyber attack deterrence
•       Cyber arms control

Kenneth will present his research at DEF CON 19 in Las Vegas in August, and as the Keynote Speaker at Hack-in-the-Box Malaysia in October.

About the Author: Kenneth Geers, PhD, CISSP, Naval Criminal Investigative Service (NCIS), is a Scientist and the U.S.  Representative to NATO CCD COE.

The NATO Cooperative Cyber Defence Centre of Excellence is a Tallinn-based international military organisation whose sponsoring nations include Estonia, Latvia, Lithuania, Germany, Hungary, Italy, Slovakia and Spain. The Centre's mission is to improve the cyber defence capabilities, cooperation and information exchange of NATO member states and their partners.

"

(Read More... | Score: 0)


Hacker Halted USA, October 21-27 in Miami
Posted by boss on Saturday, 25 June 2011 @ 18:01:32 EDT (1115 reads)
Topic Training News

cdupuis writes "

NOTE FROM CLEMENT:

Hacker Halted was a real blast last year on both the social side and the security training side, it was really top notch.   I am looking forward to this year edition!   Secure Ninja will have a booth and this year I am attending,  please come and say HI!,  I will be very pleased to meet you and introduce you to some of the very exciting projects we are now working on.    You will find me at the Secure Ninja booth, or on the conference floor with my Secure Ninja color or the CCCure Logo on my shirt.  See you there.  Clement

Hacker Halted USA, October 21-27 in Miami, is the EC-Council's flagship IT security event for both technical experts and C-Level executives. 

It hosts lots of technical training courses and a two-day conference with exhibits. 

The conference track themes include cloud security, SCADA, and timely topics chosen by peer review and input from 450 training companies worldwide.

CCCure subscribers can receive a $100 discount on the two-day conference or the six-day Training/Conference Package by inserting the code HHMP48 when prompted. 

You can get all of the details at:

http://www.hackerhalted.com/2011

Best regards

Clement

"

(Read More... | Score: 0)


New Enterprise IT Security Magazine has been released
Posted by boss on Friday, 06 May 2011 @ 12:09:51 EDT (1533 reads)
Topic Training News

Anonymous writes "
New Enterprise IT Security Issue is Out

Defining Best Practices for IT Security Within a Cloudy World
by Chris Poulin
Cloud Computing - Is it Worth the Move?
by Gary S. Miliefsky
Coud Computing and Its Security Benefits
by Ajay Porus
Cloud Security Advancement and Its Effects on Data-Centric Persistence Layer
by Stephen Mallik
Evaluating the Security of Multi-Tenant Cloud Architecture
by David Rokita
How Application Intelligence Solves Five Common Cloud Computing Problems
by Patrick Sweeney
Cloud Computing Standards
by Justin Pirie
Firewall, IPS – What's Next?
by Pavel Minarik
Privileged Identity Management Demystified
by Jim Zierick
Defence-In-Depth The Onion Approach
by Matthew Pascucci
Ready or Not Industrial Cyber Warfare Comes
by Itzik Kotler
Enterprise IT Security Management by the Numbers
by Shayne Champion
Management of Knowledge Based Grids
by Siân Louise Haynes & Stilianos Vidalis
Security Testing
by Mark Lohman
Simplifying IT Security Management
by Richard Stiennon
Security Challenges Facing Enterprises in 2011
by Amit Klein
Top 8 Firewall Capabilities for Effective Application Control
by Patrick Sweeney
YOU As a Password
by Tom Helou

Download May Issue!
Win Flexcrypt License! Enterprise IT Security Contest

We would like to announce that we came up with an idea of a contest for the best essay in the field of Enterprise Wireless Security. The topic is yours to decide but it must be written in the field mentioned.

The best essays will be prizes with a full version of Flexcrypt funded by Nordic Information Security Group AB. The best essays would also be published in our magazine.

The prizes are:

1st place, 2 year Flexcrypt license
2-3 place, 1 year Flexcrypt licenses
4-10th place, 6 months Flexcrypt licenses

Good Luck readers and have fun!

Contact:
kinga.polynczuk@software.com.pl
lukasz.koska@software.com.pl

http://enterpriseitsecuritymag.com

Get a 50% discount for Hack In Paris conference!

Buy Enterprise IT Security magazine subscription and get a discount for Hack In Paris conference. Hurry up, coupons are waiting for the fastest! More information on the conference: http://www.hackinparis.com.

Contact Enterprise IT Security team!
Please spread the word about Enterprise IT Security magazine!

Enjoy reading!
Łukasz Kośka & Enterprise IT Security team
lukasz.koska@software.com.pl
http://www.enterpriseitsecuritymag.com
tel. +1 917 338 36 31
"

(Read More... | Score: 0)


PenTest Magazine is Launched – Download Free Teaser Issue
Posted by boss on Friday, 22 April 2011 @ 10:33:45 EDT (1927 reads)
Topic Training News

Anonymous writes "

NOTE FROM CLEMENT:
A new magazine dedicated to Professional Penetration Testers has been released.  The magazine subscription is to ensure that you do not get 80 pages of publicity and a few pages of content.   The magazine will focus on thorough coverage of different aspects of Security Testing and Penetration Testing.   You can get a teaser for free.   See details below:

PenTest Magazine, the only magazine devoted to penetration testing, is launched.  It features articles by penetration testing specialists and enthusiasts, experts in vulnerability assessment and management.  We cover all aspects of pen testing, from theory to practice, from methodologies and standards  to tools and real-life solutions.

You can download the “Edition #zero” which is the teaser issue from pentestmag.com for free. 

Regular issues will be available by monthly subscription – subscribe now and download the next issue in May!

Visit pentestmag.com.

"

(Read More... | Score: 0)


JIM WIGGINS NAMED FISSEA "EDUCATOR OF THE YEAR"
Posted by boss on Thursday, 24 March 2011 @ 22:58:03 EDT (1286 reads)
Topic Training News

cdupuis writes "

FOUNDER AND EXECUTIVE DIRECTOR JIM WIGGINS NAMED FISSEA "EDUCATOR OF THE YEAR"

At its three-day annual conference on the campus of the National Institute of Standards and Technology (NIST), on March 15, 2011 the Federal Information Systems Security Educators’ Association (FISSEA) named FITSI Founder and Executive Director Jim Wiggins as the winner of its Educator of the Year Award. The award was bestowed based on Mr. Wiggins’ long-standing reputation as a technical trainer of IT professionals who operate and defend federal information systems. His accomplishments as a trainer in the Washington DC area are well known and for the past 11 years he has been instrumental in helping students achieve their educational and certification objectives within the IT security community.

Additionally, Mr. Wiggins was cited in his nominations for establishing the Federal IT Security Institute ( FITSI) and the impact FITSI is making in relation to the federal workforce.

FITSI is a non-profit organization that offers a role-based IT security certification program to federal IT managers, designers, operators and auditors. The certification program is based primarily upon the guidance and standards developed and promulgated by NIST.
“At a personal level, this prestigious award is obviously very gratifying,” said Mr. Wiggins. “More importantly, I am pleased for FITSI and its Federal Information Technology Security Professionals (FITSP) who have pushed role-based IT security credentialing to a new level of awareness across the federal IT space.”


Each year, FISSEA presents its Educator of the Year award to an individual “who has made significant contributions in education and training programs for information systems security.”

Nominees may be involved in any aspect of information systems security awareness, education or training, including instructors, security program managers and practitioners who further education and training. Interested parties can view the nomination letters from FISSEA members at the following website: http://csrc.nist.gov/organizations/fissea/educator-year/recipients.shtml.

About FITSI:
The Federal IT Security Institute ( FITSI) offers role-based certification to four groups of federal IT professionals: managers, designers, operators and auditors.  FITSI provides certification exams with the objective of making federal IT systems more secure by assuring that the people who create and manage them understand and apply the appropriate federal IT security standards.  FITSI is based in Alexandria, VA.

About FISSEA:
Founded in 1987, FISSEA is an organization run by and for federal information systems security professionals. FISSEA assists federal agencies in meeting their computer security training responsibilities. Toward that end, NIST provides FISSEA with technical support. FISSEA’s website is: FISSEA.

FISSEA can also be found on GovLoop at: FISSEA.

"

(Read More... | Score: 0)


Emerging Cyber Security Certification Groups Form Partnership
Posted by boss on Friday, 04 March 2011 @ 19:02:50 EST (1582 reads)
Topic Training News

Anonymous writes "

Emerging Cyber Security Certification Groups Form Partnership

Source: http://www.businesswire.com/news/home/20110303006054/en/Emerging-Cyber-Security-Certification-Groups-Form-Partnership

March 3rd, 2011 - WASHINGTON--(BUSINESS WIRE)--Two of the nation’s emerging IT security certification organizations – the Federal IT Security Institute (FITSI) and the Holistic Information Security Practitioner Institute (HISPI) – announced today a strategic partnership with the goal of developing a more common set of certification criteria that will be available to a larger network of IT security managers and information security practitioners.

In a joint statement, FITSI Executive Director Jim Wiggins and HISPI President John DiMaria, said: “At a time of growing concern about the need for enhanced cyber security certification, we believe our two organizations, working together, can offer value added certification to more IT professionals than ever before. Both of our groups have upheld the highest standards of quality and expertise and we look forward to building increased awareness of our certification while providing additional services and benefits to our members.”

About FITSI:

The Federal IT Security Institute (FITSI) offers role-based certification to four groups of federal IT professionals: managers, designers, operators and auditors. FITSI provides a series of certification exams nationwide with the objective of making federal IT systems more secure by assuring that the people who create and manage them understand and apply the appropriate federal IT security standards. FITSI is based in Alexandria, VA. FITSI's website is http://www.fitsi.org.

About HISPI:

The Holistic Information Security Practitioner Institute (HISPI) is an independent certification organization consisting of IT security volunteers from a wide range of corporations and organizations. As its name implies, HISPI promotes a holistic approach to information security program management by offering certification in information security, information assurance and governance. It focuses on international standards, best practices, and comprehensive frameworks for developing effective information security programs. HISPI is based in Lithonia, GA. HISPI's website is http://www.hispi.org.


Contacts
FITSI:
Jim Wiggins, 703-828-1196 x701
or
HISPI:
John DiMaria, 888-247-4858

"

(Read More... | Score: 0)


Center for Internet Security Updated Security Metrics
Posted by boss on Wednesday, 24 November 2010 @ 17:11:46 EST (1321 reads)
Topic Training News

Anonymous writes "

Overview

Organizations struggle to make cost-effective security investment decisions, in part because information security professionals lack widely accepted, unambiguous metrics for supporting their decisions.

To address the need for clear security metrics, CIS established a consensus group of industry experts. The result? A set of Consensus Security Metrics and data set definitions that can be used across organizations to collect and analyze data on security outcomes and process performance.

New Updates Released November 2010

Download the Consensus Security Metrics

Initial Scope

For the initial set of consensus metrics, the team wanted to develop a collection of unambiguous, logically defensible outcome and practice metrics measuring:

The frequency and severity of security incidents

  • Incident recovery performance
  • The use of security practices that were generally regarded as effective

Security Metrics

A team of more than 150 government, private, and academic experts worked to reach consensus on an initial set of security outcome and practice metrics. These metrics cover the following business functions:

 

  • Application Security
    • Number of Applications
    • Percentage of Critical Applications
    • Risk Assessment Coverage
    • Security Testing Coverage
  • Configuration Change Management
    • Mean-Time to Complete Changes
    • Percent of Changes with Security Review
    • Percent of Changes with Security Exceptions
  • Financial
    • Information Security Budget as % of IT Budget
    • Information Security Budget Allocation
  • Incident Management
    • Mean-Time to Incident Discovery
    • Incident Rate
    • Percentage of Incidents Detected by Internal Controls
    • Mean-Time Between Security Incidents
    • Mean-Time to Recovery
  • Patch Management
    • Patch Policy Compliance
    • Patch Management Coverage
    • Mean-Time to Patch
  • Vulnerability Management
    • Vulnerability Scan Coverage
    • Percent of Systems Without Known Severe Vulnerabilities
    • Mean-Time to Mitigate Vulnerabilities
    • Number of Known Vulnerability Instances

Metrics Schema

In addition to developing these metrics, the CIS community is developing a metrics schema—an electronic format for sharing metric definitions, data sets, and results.

Current Initiatives

For More Information

If you're interested in joining our CIS Security Consensus Metrics Team, or if you have questions about our Security Consensus Metrics initiative in general, please contact us

"

(Read More... | Score: 0)


A new advanced security certification from CompTIA -- Fill the survey
Posted by boss on Friday, 27 August 2010 @ 23:15:40 EDT (962 reads)
Topic Training News

Anonymous writes "

A New Advanced Security Certification is on the way!

To Security Professionals – Important Request:

In case you did not know, I am a Founding Member of the CompTIA Security+ Cornerstone Committee.  I am writing this blog to ask if you would complete an important survey because of your expertise in information security. CompTIA is developing a new advanced security certification exam to follow CompTIA Security+ (or equivalent experience) and we are seeking your input on the exam objectives. We hope you’ll appreciate how important your input is to the development of this certification, and ultimately to those who follow you in their security careers.  Personally, I am excited by the cutting-edge objective set of the intended certification:  It is up-to-date and pragmatic.  It includes (speak of the devil) objectives related to:

  • Security and Social Media
  • Virtualized Desktops (VDI)
  • Insider Threat
  • 802.1x
  • Fuzzing
  • And a plethora of deep, technical, scary stuff!

To begin this approximately ten-minute survey, please go here:  https://s-xut5m-345723.sgizmo.com
In appreciation for your time and participation, CompTIA is giving away a CompTIA T-shirt to every 10th person who completes the survey.

CompTIA values your privacy. Results are completely anonymous and the data will only be viewed in the aggregate. Please complete by September 8, 2010.
Thank you very much for your participation.

Please contact research_at_comptia.org if you experience any technical difficulties with the survey.

Go ahead:  support the community and get a free T-Shirt!

Barry Kaufman, CISSP, CEH, MCSE, ITILv3

"

(Read More... | Score: 5)


Top 10 Certifications for 2010
Posted by boss on Friday, 25 December 2009 @ 13:15:16 EST (10860 reads)
Topic Training News

cdupuis writes "
CISSP, CISM Are Most Sought by Professionals

Upasana Gupta, Contributing Editor
December 22, 2009

Information Security Media Group (ISMG) recently conducted its first annual Information Security Today Career Trends survey. The main objective was to benchmark 2010 trends in information security careers across industries. Survey results show that professionals are committed to growing their competencies and will invest their time and resources in certifications bodies in 2010.

chart

Based on survey results, here is a list of top 10 certifications most sought after by security professionals -

1. CISSP - Certified Information Systems Security Professional

Certified Information Systems Security Professional offered by ISC2 is generally the most recognized internationally and popular with information security professionals. For security practitioners planning to build a career in information security and holding at least five full years of experience in information security, the CISSP credential is an ideal career goal. Increasingly recruiters look for this credential in potential candidates as a validation of their commitment toward this profession. Thirty percent of survey respondents said they want to pursue CISSP certification in the next year.

2. CISM - Certified Information Security Manager

Certified Information Security Manager certification is offered by ISACA and is developed specifically for experienced information security managers and those who have information security management responsibilities. The CISM certification is for the individual who manages designs, oversees and/or assesses an enterprise's information security (IS). The CISM certification promotes international practices and provides executive management with assurance that those earning the CISM certification have the required experience and knowledge to provide effective security management and consulting services. In the survey, 22% of respondents said they want to pursue CISM certification in the next year.

3. GIAC - The Global Information Assurance Certification

The Global Information Assurance Certification validate the real-world skills of IT security professionals. GIAC currently offers certifications for over 20 job-specific responsibilities that reflect the current practice of information security including digital forensics, intrusion and incident handling, security administration, management, operations, legal, audit and software security. The demand for GIAC certifications is increasing as organizations today is driving the need for hands-on technical personnel. According to the survey, 19% of respondents said they want to pursue GIAC certification in the next year.

4. CISA - Certified Information Systems Auditor

Certified Information Systems Auditor designation demonstrates proficiency in information security audit, control and security skills. CISA has become a preferred certification program by individuals and organizations around the world. CISA certification signifies commitment to serving an organization and the IS audit, control and security industry with distinction.

5. CSFA - CyberSecurity Forensic Analyst

CyberSecurity Forensic Analyst is an emerging certification and skill within information security getting popular with increased cyber crimes and fraud taking place within organizations. Possessing the CSFA certification is proof that the analyst can conduct a thorough and sound forensic examination of a computer system and other digital/electronic devices, properly interpret the evidence, and communicate the examination results effectively and understandably. The CSFA designation is held exclusively by the most qualified digital forensic professionals and is a testament that the holder has the skills necessary to perform a comprehensive analysis within a limited time frame.

6. CEH - Certified Ethical Hacker

Certified Ethical Hacker is another certification gaining popularity as hacking and fraud activities are on the upswing. The CEH Program certifies individuals in the specific network security discipline of Ethical Hacking from a vendor-neutral perspective. The CEH certification fortifies the application knowledge of security officers, auditors, security professionals, site administrators, and anyone who is concerned about the integrity of the network infrastructure. A Certified Ethical Hacker is a skilled professional who understands and knows how to look for the weaknesses and vulnerabilities in target systems and uses the same knowledge and tools as a malicious hacker.

7. CBCP - Certified Business Continuity Professional

Certified Business Continuity Professional is another specialization gaining prominence within information security, with the outbreak of H1N1 pandemic and with organizations increasingly focusing their efforts in effective crises management and business continuity planning efforts. The CBCP certification offers competency on business continuity and disaster recovery planning responsibilities and accomplishments.

8. CPP - Certified Protection Professional

Certified Protection Professional is a designation for individuals who have demonstrated competency in all areas constituting security management. As the emphasis on protecting people, property, and information increases, it has strengthened the demand for professional managers, to meet these needs. The ASIS International administers the Certified Protection Professional program.

9. CCE - Certified Computer Examiner

Certified Computer Examiner is a certification provided by the International Society of Computer Forensic Examiners (ISFCE). This certification focuses to increase the level of professionalism and further the field and science of computer forensics. The foundation of this certification maintains a fair, uncompromised process for certifying the competency of forensic computer examiners and sets high forensic and ethical standards for forensic computer examiners.

10. Vendor Certifications

CISCO and Microsoft specific certifications top the list as the demand for technical and hands-on professionals increase within organizations including security architects, security and network engineers and administrators.

See original article at:  http://www.cuinfosecurity.com/p_print.php?t=a&id=2025

"

(Read More... | Score: 4)


Webcast: “SC Magazine’s 20 Influential Security Products of the Past 20 Years”
Posted by boss on Thursday, 12 November 2009 @ 15:35:12 EST (1252 reads)
Topic Training News

cdupuis writes "

 

Webcast: "SC Magazine’s 20 Influential Security Products of the Past 20 Years”
with Peter Stephenson

YOU’RE INVITED: IT SECURITY WEBCAST 
 
“SC Magazine’s 20 Influential Security Products of the Past 20 Years” with Peter Stephenson
 
Presenter:  Peter Stephenson, technology editor at SC Magazine
Date:  Thursday, November 19, 2009
Time:  2pm EST / 11am PST (GMT -5:00, New York)
Register: http://www.coresecurity.com/Form/generic/campaign/CS20secProducts
 
*** A recording of the webcast will be sent to everyone who registers, so be sure to sign up even if you can’t attend the live session. ***
---------------------------------------------------------------------------------
 
SC Magazine recently marked its 20th anniversary with a special issue including the publication’s picks for 20 influential security products of the past 20 years. Please join Peter Stephenson for a webcast review of these products and how they have assisted SC Magazine’s security pros during tough situations, made their jobs easier, and helped them to make new discoveries about the current threat environment.
 
The webcast will detail the process through which SC Magazine editors and reviewers selected the 20 products, while also taking a closer look at some of the individual selections. In addition, Stephenson will touch upon some of the most interesting and valuable experiences that he and his team have had over their many years of testing products and using them in their own IT environments.

Core Security’s penetration testing software solution, CORE IMPACT Pro, will also be covered as part of SC Magazine’s list. Stephenson will offer his thoughts on the product’s evolution over time and why the experts have praised its ability to prioritize, benchmark and measure organizational exposure to real-world IT threats.
 
 
We look forward to seeing you on the webcast!

Best Regards,
 
Core Security Technologies
41 Farnsworth Street
Boston, MA 02210

 

"

(Read More... | Score: 0)


FREE SC World Congress tickets from CCCure and Security University
Posted by boss on Thursday, 01 October 2009 @ 21:39:18 EDT (1376 reads)
Topic Training News

cdupuis writes "
Oct 13-14 2009 SC World Congress 2009
Free Tickets Worth $1500!!

scworldcongress2009buttonsmall.jpgSU and CCCure are offering 3  free passport ticket to SC World Congress 2009 Oct 13 - 14 worth $1500. In addition to dozens of other presentations from esteemed security leaders, the conference has four information tracks designed to increase the security professionals' knowledge: Policy/Management, Emerging Threats/Risk Planning, Editor’s Choice and Technical requirements and advances. Through these tracks, attendees will examine topics ranging from data theft and compliance to establishing partnerships between government and the private sector, security awareness to critical infrastructure protection, and from SCADA attacks to cyberwarfare.

"For an entire year - since the success of our inaugural SC World Congress – we've been working to solicit input from our readers' about what they want to experience at the East Coast’s largest security event, and working to build an agenda that exceeds their expectations," said Illena Armstrong, editor-in-chief, SC Magazine. "We are proud to say that for the 2009 SC World Congress, we have put together the most comprehensive and exciting roster of informative experts, special events and talk tracks to share the latest and greatest the information security world has to share."

email SU your name, address and phone contact info to:  Info@securityuniversity.net
Tell us why you should win the free $1,500 passport tickets.
Drawing will for 3 FREE passport tickets to SC World Congress will be Oct 9th.

--
Qualified Training, Qualified Results

Sondra J. Schneider
Founder & CEO, Security University
109 Weed Ave
Stamford CT 06902
work 203.357.7744
cell 203.249.8364
www.securityuniversity.net

and

Clement Dupuis, CD
President and Founder
The CCCure Family of Portals

"

(Read More... | Score: 1)

Recommended Training

Login here

Nickname

Password

Security Code:
Security Code
Type Security Code

Don't have an account yet? You can create one. As a registered user you have some advantages like theme manager, comments configuration and post comments with your name.

Recommended

CCCure Partners

BRAZIL

Logical IT

Best Security Training in Brazil

São Paulo
Rio de Janeiro
Belo Horizonte
Fortaleza
Brasilia

USA

SecureNinja.Com

SecureNinja Dojo

CANADA

360 Security Experts

CISSP Montreal
CISSP Ottawa
CISSP Toronto
CISSP Quebec City
CISSP Vancouver
CISSP Winnipeg

MIDDLE EAST

CISSP Dubai
CISSP Abu Dhabi
CISSP Qatar
CISSP Kuwait
CISSP Oman

THE OISSG GROUP
The OISSG serving the Middle East security needs

EUROPEAN UNION

CISSP Dublin, Ireland
CISSP London, UK
ESPION

Best security training you can get in Ireland

AFRICA

Lagos, Nigeria
CISSP and Security Training
Digital Encode

The best security training in Lagos and Nigeria

----------------------------
Cameroon
Security Training
CISSP, CEH, Security+
GETSEC

Best Security Training in Cameroon

Most Active Members

· 1: side_winder
Total points: 15336
· 2: webplu9
Total points: 15228
· 3: Lopezco
Total points: 8514
· 4: cissp_newbie
Total points: 7593
· 5: cdupuis
Total points: 7381
· 6: mikeyoung_fla
Total points: 5526
· 7: Vladimir
Total points: 4611
· 8: damoose
Total points: 3374
· 9: MMM
Total points: 2969
· 10: educk
Total points: 2553

Today's Big Story

There isn't a Biggest Story for Today, yet.

Random Headlines

Past Articles

Wednesday, August 26
· Security Leaders to Convene, Address Today's Challenges at SC World Congres
Saturday, August 22
· CCCURE CISSP BOOT CAMP DUBLIN, IRELAND
Tuesday, August 18
· Combined Hampton Roads and Tidewater ISSA Chapter meeting
Tuesday, August 04
· Free Laptop, Free Airfare, $800 off, Free whatever....
Tuesday, July 21
· SC World Congress - Enterprise Data Security, October 13-14 in New York City
Saturday, June 20
· Cybersecurity training: The battle over mandates
Thursday, March 19
· EC-Council Secure aid Program
Tuesday, March 10
· EC-Council provides forensics scholarship
Thursday, January 08
· New website 'The Academy Home'
Wednesday, January 07
· Pearson Launches Certflashcardsonline.com
Thursday, December 04
· CCCure/OISSG CISSP Workshops -- Middle East, Egypt, and India Grand Tour
Tuesday, December 02
· Detecting Rootkits with Rkhunter
Thursday, November 20
· Earn CPE credits by viewing videos on The Academy
Monday, November 10
· The Academy Video Update
Friday, November 07
· Beware of Testking, Actualtests, and the like
Friday, October 31
· Register for Charity
Tuesday, October 28
· Webcast Series - Endpoint Security
Sunday, October 26
· HISP course offered in Athens, Greece
Saturday, October 25
· The Academy
Friday, October 24
· The Academy Video Update

Older Articles

All logos and trademarks in this site are property of their respective owner.
The comments are property of their posters, all the rest © 2007 by CCCure.Org, and the site maintainers Clement Dupuis and Nathalie Lambert. Reuse is strictly prohibited without written permission of CCCure.Org or it's maintainers.

This web site is not associated directly or indirectly with ISC2, the SANS Institute, ISACA, or other certification authority. The GCFW, CISSP, SSCP, ISSEP, ISSMP, CISA, and CISM are all the property of their respecful owners. The content of this site is provided to you freely due to the generosity of our sponsors.


  • Career
  • Magazines
  • Conferences
  • Study Books
  • Certifications
  • Training
  • Tutorials
  • Quizzes
  • Forums

    • Page Generation: 0.59 Seconds