Like all IT professionals, information security specialists are well aware of the importance that qualifications play in demonstrating their competence to employers.
Information security is a complex, multidisciplinary field, so choosing a learning path that will deliver qualifications to support a long-term career can seem daunting. No such path will be completely planned, and in a demanding, ever-changing technical environment, very few of us can predict our career beyond five years!
Although we believe that no cybersecurity professional should be without an ISO 27001 qualification, it is worth considering other key qualifications.
Do you need the technical stuff?
Training and HR managers will often ask, “Do you want a technical job or a career in management?” The correct answer for an aspiring cybersecurity professional should always be that they want both, but not necessarily at the same time.
A career in cybersecurity requires knowledge of IT systems (hardware, software, networks), applications, and the people who use them; an understanding of the array of threats and vulnerabilities that characterize cyber attacks; and an awareness of the security provided by commercial products from vendors.
Start with the basics and learn your trade
We always advise those in the early stage of their careers to get as much practical experience as possible and achieve industry-standard qualifications offered by Microsoft, CISCO, and HP. We also recommend the vendor-independent learning path provided by CompTIA with its highly valued A+, Network+, and Security+ qualifications.
And the very specialist stuff?
As they gain experience, many individuals specialize in ‘dark arts’ roles that include security architecture, penetration testing, digital forensics, incident management, and security/compliance auditing.
Specialist training and qualifications are necessary for these careers, so we advise choosing industry-recognized qualifications awarded by independent organizations assessed by examination. These include Certified Ethical Hacker (CEH) and GIAC Certified Penetration Tester (GPEN) certificates.
Don’t leave management qualifications to the last minute
Most senior careers (with higher salaries) involve becoming a manager or advising others about management. They may entail managing a technical team of specialists or managing the people, processes, and technology associated with effective information security. The latter requires knowledge of asset and risk management and the controls needed to mitigate the risks to an organization.
ISO 27001 (certification of which is growing at 91% per year in the US alone) is the only international information security standard against which organizations can achieve independently audited certification. ISO 27001 certification demonstrates that a company has adopted international best practice.
This is where the knowledge and skills associated with ISO 27001 qualifications such as ISO27001 Certified ISMS Foundation Online (the starting point for all prospective ISO 27001 project managers and auditors) and ISO27001 Certified ISMS Lead Implementer Online (acknowledged as the most comprehensive ISO 27001 implementation course in the US) have the greatest influence. Save $419 by booking for both with our special combi offer.
The ISO27001 Certified ISMS Lead Auditor Online Masterclass is ideal for those seeking a career as an auditor or consultant. This fully accredited, practitioner-led course allows you to learn from experts with real-world expertise and insights. Over four-and-a-half days you will cover the key steps involved in planning and executing an external audit of an ISO/IEC 27001:2013-compliant information security management system (ISMS).
“My company needed a cybersecurity champion and I needed the qualifications to prove it. I have quickly moved up the management ladder and can truly describe your training as ISO 27001 management rocket fuel.” Colin Whitworth, CTA Data Services Ltd
Attend the Lead Implementer course in Washington from 12-13 October 2017 and learn from security expert Alan Calder live and in person at the Certified InfoSec Conference. Plus you save 30% on the regular price.
Date: October 12–13 classroom session
Time: 9:00 am–5:00 pm
Venue: Hilton Hotel Rockville, Washington, DC. Register for the 2-day course now.