This section contains articles about IT Certifications. We run a series of ‘Demystifying’ articles that cover the most popular IT Certifications and go in-depth into what you need to know to pass the test.
According to ISACA, the CISM certification is changing to reflect the new CISM job practice analysis. (Source: ISACA’s CISM Review Manual 2012 p. iii) ISACA
When it comes to deciding what security certifications to pursue, IT professionals should understand that they will be better off career-wise if they ask—and then
Our 7-Day CISSP training course is the best things you can do to prepare yourself to pass the CISSP exam. The bootcamp style course lasts
Marc Winner hasn’t come up with a way to precisely measure the return on investment for security training. What he does know for certain, however,
CPT: Ethical Hacking Training @ Ethical Hacker .net InfoSec Institute Review : http://www.ethicalhacker.net/content/view/368/2/ Ethical Hacking: MadIrish.net InfoSec Institute Review: http://www.madirish.net/node/382 Computer Forensics Course Review –
(ISC)2 is making several changes to the CISSP exam effective January 1st, 2012. This language was found on the ISC2 website; (ISC)² CBK Domain Name
PORTIONS OF THIS ARTICLE INCLUDING MANY OF THE DEFINITIONS AND TERMINOLOGY HAVE BEEN SOURCED AND SUMMARIZED FROM ISACA.ORG and COURSE MANUALS PUBLISHED BY ISACA. A
PORTIONS OF THIS ARTICLE INCLUDING MANY OF THE DEFINITIONS AND TERMINOLOGY HAVE BEEN SOURCED AND SUMMARIZED FROM ISACA.ORG and COURSE MANUALS PUBLISHED BY ISACA. Infrastructure
As exam time approaches, everyone feels anxious about whether they’re ready to take the exam and to pass and thus to receive the CISSP certification.
PORTIONS OF THIS ARTICLE INCLUDING MANY OF THE DEFINITIONS AND TERMINOLOGY HAVE BEEN SOURCED AND SUMMARIZED FROM ISACA.ORG and COURSE MANUALS PUBLISHED BY ISACA. Application
PORTIONS OF THIS ARTICLE INCLUDING MANY OF THE DEFINITIONS AND TERMINOLOGY HAVE BEEN SOURCED AND SUMMARIZED FROM ISACA.ORG and COURSE MANUALS PUBLISHED BY ISACA. Shared
ISC2 CISSP, CAP, ISSEP Exam Pricing CISSP or Associate of (ISC)² Exam (6-hour)* CSSLP* (ISC)² Exam (4-Hour)* CISSPISSAP/ ISSEP/ISSMP (ISC)² Exam (3-hour)* SSCP or
PORTIONS OF THIS ARTICLE INCLUDING MANY OF THE DEFINITIONS AND TERMINOLOGY HAVE BEEN SOURCED AND SUMMARIZED FROM ISACA.ORG and COURSE MANUALS PUBLISHED BY ISACA. Internet
What is a standard? Who defines standards? Where do we as IT auditors come into contact with standards? Which framework should we use to do
CISM Chapter 5 – Incident Management and Response Incident Management and Response (IM&R) accounts for 14 percent of the CISM exam or about 28 questions.
CISM Chapter 4 – Information Security Program Management (ISPM) In Chapter 3 we talked about Information Security Program Development, in Chapter 4 we’re going to
CISM Chapter 3 – Information Security Program Development (ISPD) ISPD accounts for 17 percent of the CISM exam or about 34 questions. In 2010, ISACA
Information Security is all about staying informed. And the CISSP is no exception. If you’re not reading then you’re falling behind. When you take the
CISM Chapter 2 – Information Risk Management (IRM) IRM accounts for 22 percent of the CISM exam or about 44 questions. In 2010, ISACA reorganized
There are eight (8) task statements for ISG and twenty (20) knowledge statements. The eight task statements are covered in this post by Ken
ISACA’s 2011 CISM fits into DoD 8570.01-M as satisfying IAM Level II The exam consists of 5 domains as follows: Domain 1: Information Security Governance
Operations Security (OpSec) is concerned with the same basic elements as all the other CISSP domains and those are confidentiality, integrity and availability. So let’s
Domain 5, Protection of Information Assets is the last domain in the CISA certification area and the most important. ISACA has stated that this domain
For 2011, ISACA has updated the domains reducing them from 6 to 5. Domain 4 now includes Disaster Recovery from the old Domain 6. This
Application development security requires an awareness of how different environments demand different security. For example, the security for running a mainframe application that is not
It’s interesting to notice how ISACA is aligning itself with the International Organization of Standards ISO/IEC 27002. The title for Domain 3 is Information Systems
There are several topics we need to look at when we discuss the Legal domain of CISSP. First you need some background and a couple
An Introduction to S-Tools Steganography (as we discussed in our coverage of the CISSP Cryptography Domain) is the hiding of information within a picture, say
CISA – Domain 2 – Governance and Management of IT ISACA has revamped the CISA material and this domain now contains the Business Continuity section from
Several of you have been asking for a mapping of the new CISA 5 domains to the previous year’s six domains. The new mapping is
You only have to turn on the TV and watch some of the footage of the destruction caused by the tsunami in Japan to realize
First, Get a copy of the CISA Review Manual and a copy of the Q&A CD Second, Read one Domain then answer all the questions
ISACA’s 2011 CISA Exam material has been revised from six domains to five domains. Prior to 2011 Domain 6 was Business Continuity and Disaster Recovery. That
There are books upon books about cryptography and this article will not attempt to regurgitate all of the historical background about the subject. However, there
Telecommunications and Network Security is this week’s CISSP domain posting. The dreaded OSI model, there’s no way around it, PDNTSPA or Please Do Not Throw
This week’s article looks at the Physical and Environmental Security domain of CISSP. First and foremost, (ISC)2 and the CISSP exam consider human safety paramount.
This article will cover some of the major areas within Security Architecture and Design by looking at: design concepts, hardware architecture, OS and software architecture,
There are several areas within access control which are covered on the CISSP exam. Those areas include IAAA (Identification, Authentication, Authorization and Accountability), access control
Most people hear the term Infosec, and they automatically associate that with network and telecom security, but in reality it’s much broader than that. IDS
Today let’s take a look at the CISSP Domain that deals with Information Security Governance and Risk Management. When we speak about IS Governance we’re
