Today, the role of computing systems, networks and mobile communications is constantly increasing. At the same time, computer frauds, hacking, network and mobile communication attacks are a constant threat for all businesses. To resist the attacks companies have to be sure they have the skilled and knowledgeable information security professionals.
To remain effective, an IT professional has to confirm his proficiency and career commitment. The most efficient means are information security certifications, which validate relevant security knowledge and experience. However, choosing the appropriate certification can be a difficult process. The most required security certifications are those offering a broad view on information security field. Holding one of these certifications can definitely be considered as a major investment in the personal career.
Here are some of the most known vendor neutral security engineering certifications:
Systems Security Certified Practitioner (SSCP)
Exam structure: three-hour, 125 questions
Exam prices (USD): $400 (early registration), $450 (standard registration)
Exam location: official testing locations
Other requirements: 1 year experience and ethical guarantee
Maintenance: 60 units of continuing education per year; recertification every three years
Comments: dedicated information security professionals
Certified Information System Security Professional (CISSP)
Exam structure: six-hour, 250 questions
Exam prices (USD): $550 (early registration), $600 (standard registration)
Exam location: official testing locations
Other requirements: 4 years experience, ethical guarantee
Maintenance: 120 units of continuing education per year; recertification every three years
Comments: the most appreciated security certification
Vendor: isc2.org - (ISC)2
GIAC Security Engineer (GSEC)
Exam structure: five-hour, 180 questions
Exam prices (USD): $250 (with training), $450 (without training)
Exam location: online and at SANS conferences
Other requirements: practical assignment, training course (for some certifications)
Maintenance: re-certification every four years
Comments: for those willing to get considerable technical knowledge
Vendor: giac.org - GIAC
Security+
Exam structure: 90-minute, 100 questions
Exam prices (USD): $225
Exam location: official testing locations
Other requirements: minimum two years of networking experience recommended
Maintenance: "the certification is good for life"
Comments: entry-level certification
Vendor: comptia.org - CompTIA
Information Security Engineering Certified Professional (ISECP)
Exam structure: two-hour, 80 questions
Exam prices (USD): $110
Exam location: mutually agreed with proctor
Other requirements: minimum 3 years experience recommended, ethical guarantee
Maintenance: re-certification every five years
Comments: dedicated information security professionals
Vendor: infinidox.com - INFINIDOX
Thomas Simonis is a well known expert and university lecturer in security engineering, having contributed many articles on that subject to various publications.
