The U.S. Secretary of Homeland Security, Janet Napolitano, talked about the issue at the ASIS / (ISC)2 Congress 2012 in Philadelphia stating that the US-CERT (United States Computer Emergency Readiness Team) responded to over 106,000 reports of cyber attacks in 2011 alone.
Stating the obvious
How this affects you?
Opportunities are vastly growing for both the new and established IT security professionals, but it’s also important that you gain the right security cert in order to be ahead of the game in this ‘what will soon be’ competitive industry.
Which certification to go for
Here are two certs which are highly respected and will help you to advance your career and greatly boost your salary.
The Certified Information Systems Security Professional (CISSP) is offered by the highly respected International Information Systems Security Certifications Consortium, or (ISC)2. CISSP professionals are highly in demand, it’s one those certs that really highlight your knowledge and skills.
It is also very popular in the IT security community as it shows that the professional has a strong understanding of security concepts as well as the specific methodologies involved. CISSP is now a requirement in many companies’ IT security positions. But before you get on your course it is important to note that this certification is only valid for three years and must be renewed by re-taking and passing the CISSP exam. The reason for this is so that you keep up to date with the latest security methodologies, technologies and information.
The CISM certification is offered by ISACA (formerly the Information Systems Audit and Control Association). CISM is among those powerful certs that have a very high salary. It is also one of the most sought after IT certifications.
This certification is designed to provide a body of knowledge for information security management, focusing mainly on information risk management. There is a very high demand for CISM professionals and are widely recognised in both organisations and government agencies.
It demonstrates to employers that the professional has a strong understanding of security governance, risk management and compliance, security program development and management, and security incident management.