Concern is rising worldwide as cybersecurity seems to be more at risk than before. Surveys show that jobs in cybersecurity are increasingly vacant, the unemployment rate is at zero and the gap between demand and skilled personnel is widening.
This also points out towards a clear direction for people interested in pursuing an IT career. If you’re thinking of professional conversion, maybe cybersecurity could spark your interest. Usually, the starting point is the most confusing when approaching unknown territory. Thus, we composed a list of certifications that will enable you to kick start your journey through tech security.
First off, you need to know that cybersecurity is composed out of various sectors such as: breach detection, secure coding, vulnerability testing or attack mitigation. You can opt for any of these considering your current skills and passions. Getting certified provides you with knowledge about tools, technique, and procedures in any of these sectors.
- C(ertified) I(nformation) S(ystems) A(uditor) – CISA
Focus points: informational system controls, monitoring, identifying vulnerabilities, protection of information, developing and implementing security systems
Issued by: ISACA (Information Systems Audit and Control Association), global recognition
Eligible applicants: +5 years work experience, a minimum of 450 points scored on a 200-800 points test
- C(ertified) E(thical) H(acker) – CEH
Focus points: tools used by hackers to counteract malicious activity
Issued by: EC-Council (International Council of Electronic Commerce Consultants)
Eligible applicants: 2 years of proven experience to take the 125 questions CEH exam
- GSEC – GIAC Security Essentials Certification
Focus points: information security systems
Issued by: GIAC (Global Information Assurance Certification), governmental and military global recognition
Eligible applicant: no previous training or experience, 180 question exam in 5 hours’ time
- EC–C(ouncil) C(ertified) S(ecurity) A(nalyst) – ECSA
Focus points: penetration testing, analysis of ethical hacking, hacking tools and technologies, risk assessment, security infrastructure in jobs like info security tester, system or firewall administrator
Issued by: EC-Council
Eligible applicants: possess CEH certification, although not mandatory
- GPEN – GIAC Penetration Tester
Focus points: security vulnerabilities identification, legal and technical implications
Issued by: GIAC (Global Information Assurance Certification)
Eligible applicants: no prior experience or certifications, 115 question exam
- C(ertified) in R(isk) and I(nformation) S(ystems) C(ontrol) – CRISC
Focus points: corporate risk, management of security controls and risk assessment
Issued by: ISACA (Information Systems Audit and Control Association)
Eligible applicants: professionals in the security field with +3 years of experience, exam assess response to threat, risk identification skills, monitoring, and reporting.
- C(ertified) I(nformation) S(ecurity) M(anager) – CISM
Focus points: information auditing, management of information system, organizational security
Issued by: ISACA (Information Systems Audit and Control Association)
Eligible applicants: 5 years proven experience, 200 question exam to test abilities to manage info security programs and handle incidents.
- C(ertified) I(nformation) S(ystems) S(ecurity) P(rofessional) – CISSP
Focus points: data and network security management practices, cryptography, architecture and models of security, access control, and telecommunications
Issued by: (ISC)2 – International Information Systems Security Certification Consortium, a nonprofit organization
Eligible applicants: 3-5 years experienced professionals, 250 questions exam of ~6 hours
- CompTIA Security+
Focus points: security best practices – network security, risk management, cryptography and organizational security systems
Issued by: CompTIA (Computing Technology Industry Association)
Eligible applicants: no mandatory priors, 2 years of experience and a Network+ certificate recommended
S(ystems) S(ecurity) C(ertified) P(ractitioner) – SSCP
Focus points: basic skills in cybersecurity, cryptography, malicious activity, access control, analysis and monitoring of data, communication, and networks, security administration
Issued by: (ISC)2 – International Information Systems Security Certification Consortium
Eligible applicants: no mentioned mandatory priors, recommended before the CISSP certificate
Moving on to a new year, we learn that demand in cybersecurity jobs is increasing opening up a gateway for professionals who are looking to up their game. The value of skilled and certified individuals on the security front will continuously grow and career expansion is not a bad idea.