Security Certification Roadmaps РЕКОМЕНДАЦИИ Strategic Technology Planning

Описание: Данная презентация описывает пять уровней сертификации – network security, firewalling, Sun adminstration, Security Knowledge, и Information Systems Security. Дополнительно, каждая сертификация делится на три подуровня.

1. Network security track (Cisco) The goal of the network security track is to provide personnel with a skill set focusing on knowledge in the key areas of network security, PIX firewalling, instrusion detection systems, and secure virtual private networks. The following three certifications are proposed in this track:

1. Network security track (cisco)

1.1 CCNA – Cisco Certified Network Associate The CCNA certification provides a foundation in and apprentice knowledge of networking installation, configuration, and operation including but not limited to the use of IP, IGRP, IPX, Serial, AppleTalk, Frame Relay, IP RIP, VLANs, RIP, Ethernet, Access Lists. Training: - Cisco Certified Network Associate Basics (CCNAB) - Interconnecting Cisco Network Devices (ICND) Exams: CCNA

1. Network security track (cisco) 1.2 CSS1 – Cisco Security Specialist 1 Cisco Security Specialist certifications focus on the growing network security proficiency in designing, installing, and supporting secure network solutions. Training: - Managing Cisco Network Security (MCNS) - Cisco Secure PIX Firewall Advanced (CSPFA) - Cisco Secure Intrusion Detection System Version 2.1 (CSIDS 2.1) - Cisco Secure VPN (CSVPN) Exams: MCNS, CSPFA, IDSPM, CSVPN

1. Network security track (cisco) 1.3 CCIE Security – Cisco Certified Internet Expert, Security The CCIE Security exam covers IP and IP routing as well as specific security components. Preparation: self-study and work experience Exams: - CCIE security qualification exam - CCIE security lab exam

2. Firewalling Track (Checkpoint) The goal of the firewalling track is to provide personnel with a skill set focusing on knowledge in the key areas of firewall and vpn deployment, management, and troubleshooting. The following three certifications are proposed in this track:

2. Firewalling Track (Checkpoint)

1.1 CCSA – Check Point Certified Security Administrator The CCSA certification provides a foundation in preparation to manage basic firewall installations. Prerequisites: None Level: Associate Training: VPN-1/FireWall-1 Management 1 Exams: CCSA

2. Firewalling Track (Checkpoint) 1.2 CCSE – Check Point Certified Security Expert The CCSE certification provides in-depth knowledge to deploy and manage VPNs and firewalls. Prerequisites: CCSA Level: Professional Training: VPN-1/FireWall-1 Management II Exams: CCSE

2. Firewalling Track (Checkpoint) 1.3 CCSE Plus – Check Point Certified Security Expert Plus The CCSE Plus certification enhances VPN and firewalling knowledge to provide the most in-depth technical expertise validated by Check Point. Prerequisites: CCSA and CCSE Level: Expert Training: VPN-1/FireWall-1 Management III Exams: CCSE Plus

3. OPERATING ENVIRONMENT TRACK (SUN) The goal of the operating environment track is to provide personnel with a skill set focusing on knowledge in the areas of performing essential system administration procedures on the Solaris[tm] Operating Environment The following two certifications are proposed in this track:

3. OPERATING ENVIRONMENT TRACK (SUN)

1.1 SCSA – Sun Certified System Administrator This certification is for experienced system administrators who are or will be responsible for administering Sun[tm] systems in a networked environment that includes LANs and the Solaris[tm] Operating Environment. Training: - Fundamentals of Solaris for System Administrators - Solaris System Administration 1 - Solaris System Administration 2 Exams: SCSA exam 1 and SCSA exam 2

3. OPERATING ENVIRONMENT TRACK (SUN) 1.2 SCNA – Sun Certified Network Administrator This certification is for experienced system administrators who are or will be responsible for administering Sun[tm] systems in a networked environment that includes LANs and the Solaris[tm] Operating Environment. Prerequisites: SCSA Level: Professional Training: Solaris TCP/IP Network Administration Exams: SCNA exam

4. Security knowledge track (non-vendor) This track offers a single expert level certification covering all areas of information security. Access Control Systems & Methodology - Applications & Systems Development - Business Continuity & Disaster Recovery Planning - Cryptography - Law, Investigation & Ethics - Operations Security (Computer) - Physical Security - Security Architecture & Models - Security Management Practices - Telecommunications & Network Security The following certification is proposed in this track:

4. Security knowledge track (non-vendor) Certified Information Systems Security Professional

4. Security knowledge track (non-vendor) 1.1 CISSP – Certified Information Systems Security Professional CISSP Certification was designed to recognize mastery of an international standard for information security and understanding of a Common Body of Knowledge (CBK). Certification can enhance a professionals career and provide added IS credibility. Prerequisites: None Level: Expert Training: CISSP CBK Review Course Exams: CISSP

5. Information systems security (NON-VENDOR) The goal of the information systems security track is to provide personnel with a skill set focusing on knowledge in all the key areas of information security from a vendor independent perspective, security fundementals, firewalling, instrusion detection systems, ethical hacking, incident handling, windows security, unix security, auditing and procedures.

5. Information systems security (NON-VENDOR)

1.1 GSEC – Security Essentials Certification The goal of Security Essentials Certification is to have the knowledge, skills and abilities to incorporate good information security practice in any organization. Prerequisites: None Level: Associate Training: SANS Security Essentials Exams: GSEC

5. Information systems security (NON-VENDOR) 1.2 GCFW – Certified Firewall Analyst The goal this certification is to have the knowledge, skills, and abilities to design, configure, and monitor routers, firewalls, and perimeter defense systems. Prerequisites: None Level: Professional Training: Firewalls, Perimeters Protection and VPNs Exams: GCFW

5. Information systems security (NON-VENDOR) 1.3 GCIA – Certified Intrusion Analyst The goal this certification is to have the knowledge, skills, and abilities to configure and monitor intrusion detection systems, and to read, interpret, and analyze network traffic and related log files. Prerequisites: None Level: Professional Training: Intrusion Detection In-Depth Exams: GCIA

5. Information systems security (NON-VENDOR) 1.4 GCIH – Certified Incident Handler The goal this certification is to have the knowledge, skills, and abilities to manage incidents; to understand common attack techniques and tools; and to defend against and/or respond to such attacks when they occur. Prerequisites: None Level: Professional Training: Hacker Techniques, Exploits, and Incident Handling Exams: GCIH

5. Information systems security (NON-VENDOR) 1.5 GCWN – Certified Windows Security Administrator The goal this certification is to have the knowledge, skills and abilities to secure and audit Windows systems, including add-on services such as Internet Information Server and Certificate Services. Prerequisites: None Level: Professional Training: Securing Windows Exams: GCWN

5. Information systems security (NON-VENDOR) 1.6 GCUX – Certified Unix Security Administrator The goal this certification is to have the knowledge, skills and abilities to secure and audit UNIX and Linux systems. Prerequisites: None Level: Professional Training: Securing Unix Systems Exams: GCUX

5. Information systems security (NON-VENDOR) 1.7 GSNA – Information Security Officer The goal this certification is to have the knowledge, skills and abilities to apply basic risk analysis techniques and to conduct a technical audit of essential information systems. Prerequisites: None Level: Professional Training: Auditing Networks, Perimeters, and Systems Exams: GSNA

6. X-Force Protection Certification Program 1.X-Force Protection Certification Program предполагает три уровня сертификации: - ISS Certified Specialist (ISS-CS); - ISS Certified Expert (ISS-CE); - ISS Certified Architect (ISS-CA).

6. X-Force Protection Certification Program Первый из этих уровней требует хорошего знания продуктов информационной безопасности, второй уровень - их углубленного знания, третий уровень предполагает знание как продуктов, так и различных аспектов информационной безопасности, включая технологии проникновения в компьютерные сети и законодательство в компьютерной сфере. Для того чтобы успешно сдать экзамен по каждому из этих уровней, обучающиеся должны продемонстрировать, в дополнение к знанию семейства продуктов RealSecure Protection Systems компании ISS, высокую квалификацию в вопросах компьютерной безопасности.

6. X-Force Protection Certification Program Сертификация действительна в течение 18 месяцев. После этого необходимо либо подтвердить текущий статус, заново пройдя тестирование, либо сдать экзамены следующего уровня. Обладание статусом в системе X-Force Protection Certification Program подтверждается вручением печатного сертификата. Тестирование по программе проводится через систему электронного тестирования VUE компании NCS Pearson, действующую по всему миру.