Showing posts with label crisc. Show all posts
Showing posts with label crisc. Show all posts

Monday, 11 August 2014

What your cert’s worth: security salaries under scrutiny


By 
Security roles have always been in the top half of the “IT salary hierarchy” and it seems unlikely to change anytime soon. According to a recent article on Tripwire business are investing more than ever, in order to protect themselves from security threats. Of course these investments include the recruitment and/or training of capable IT security staff.

Infographic created by the University of Alabama

With IT security becoming a top priority for businesses, certifications like the CISSP, CISA or CISM are gaining even more recognition. So if you’ve got one of these acronyms next to year name, you’re off to a great start in earning a high salary. Here are some of the average salaries in the UK for jobs requiring the following IT security certs, according to ITJobswatch.com
  1. ISACA CGEIT - £45,000
  2. EC-Council CEH - £49,000
  3. EC-Council CHFI - £51,500
  4. ISACA CISM - £55,000
  5. ISACA CRISC - £55,000
  6. (ISC)2 CISSP - £55,000
  7. ISACA CISA - £55,750
  8. ISACA COBIT - £57,500
ISACA Certified in the Governance of Enterprise IT (CGEIT) - £45,000

Certified in the Governance of Enterprise IT (CGEIT) is a program designed for professionals directing, managing and supporting enterprise IT governance. Holders of CGEIT are experts in risk management, performance measurement, value delivery and the governance and management of IT. As a CGEIT, you’ll earn an average salary of £45,000.

EC-Council Certified Ethical Hacker (CEH) - £49,000

Beat a hacker, by thinking like one. With EC-Council’s Certified Ethical Hacker certification you’ll know how to defend against the latest techniques used to exploit your organisation’s vulnerabilities. The CEH stretches far beyond the field of penetration testing and into everyday application and network security. Certified Ethical Hackers on average earn around £49,000.


Image courtesy of hyena reality/freedigitalphotos.net

EC-Council Computer Hacking Forensics Investigator (CHFI) - £51,500

EC-Council’s CHFI certification teaches you the use of forensics tools, analytical techniques, and procedures involved in obtaining, maintaining, and presenting computer forensic evidence and data in a court of law. Computer Forensics experts with a CHFI can earn £51,500 on average.

ISACA Certified Information Security Manager (CISM) - £55,000

CISM by ISACA is a widely recognised credential for IT security professionals specialising in managing, developing and overseeing information security systems and for developing best security practices. CISM certified professionals have proven skills in risk management, governance and incident management as well as program development and management. Similarly to CRISC, CISM holders have good prospects of earning an average salary of £55,000 a year.

ISACA Certified in Risk and Information Systems Control (CRISC) - £55,000


ISACA’s CRISC is for experienced IT professionals working in the fields of technology risk management and Information Systems Control. CRISC-holders can manage risk design and oversee response measures, scan and monitor systems for risk, and meet their organisation's risk management strategies. The average salary offer for CRISC certified professionals is around £55,000.



Image courtesy of njaj/freedigitalphotos.net

(ISC)2 Certified Information Systems Security Professional (CISSP) - £55,000

(ISC)2’s CISSP demonstrates your expert skills in developing, guiding, and managing security standards, policies, and procedures within your organisation. The certification is considered to be one of the most prominent and prestigious security credentials out there, which is due to its rather demanding prerequisites. As a Certified Information Systems Security Professional you can be earning an average salary of £55,000.

ISACA Certified Information Systems Auditor (CISA) - £55,750

CISA is a globally renowned credential for Information Systems audit and security experts. CISA certified professionals possess the necessary skills, knowledge and expertise to identify and manage vulnerabilities and risks within their organisations, while implementing solutions to deal with them. The average salary for CISA holders is around £55,750 per annum.

ISACA Control Objectives for Information and Related Technology (COBIT) - £57,500

ISACA’s COBIT framework helps you to maximise the value of Information Technology within your organisation. With this certification under your belt, you’ll know how to achieve strategic goals and minimise risks, whilst optimising the cost of IT services. COBIT certified professionals earn an average salary of £57,500.

There you have it, the worth of some of the top security certs expressed in monetary terms. And don’t forget, the more experience you have, the closer you get to making these numbers even bigger.

About the Author:       
Sarah writes for Firebrand Training on a number of IT related topics. This includes exams, training, certification trends, project management, certification, careers advice and the industry itself. Sarah has 11 years of experience in the IT industry. 

Monday, 24 March 2014

Digital Badges for ISACA Credential Verification


By 

ISACA has decided to take countermeasures against fraudulent security credentialing with the use of Open Badges. Open Badges by Mozilla are digitally displayed badges and in this case, they will be awarded to those who have completed training and acquired an ISACA certification.

How does it work?

Open Badges are secure digital representations of ISACA credentials, such as CISA, CISM, CGEIT or CRISC. They can be embedded into emails, personal websites, a résumé, as well as social and professional networking websites, such as Facebook and LinkedIn. Displaying your open badge across social platforms offers potential employers an easy way to verify and evaluate your competencies and achievement.
Once someone clicks on the badge, it calls up a set of metadata, verifying the certification and sums up the qualifications and the process, which were required to earn it.


“ISACA credentials are in demand by employers worldwide, and we are glad to offer our certification holders the opportunity to utilize open badges to demonstrate their accomplishments… Open Badges offer an efficient method for current and potential employers to validate a certification, and also give certification holders a simple and effective opportunity to tell their professional story and enhance their recognition.” said Allan Boardman, International Vice President of ISACA and Chair of ISACA’s Credentialing and Career Management Board, in a recent statement.

Which is your ISACA course?

CISA, CISM, CGEIT, CRISC. We run them all, just pick the one that suits you best. Visit our course page and view more details about accelerated ISACA training courses.

ISACA’s exam registration deadline is near

ISACA only runs its exams three times a year, with the next one coming up on 14th June. If you want to take your exam as early as possible, you have to register by 11th April, which is the final registration deadline for the June exam.

Have you already completed your course and registered for the exam? Well done, here are some revision tips for passing your exam! 

About the Author:       
Sarah writes for Firebrand Training on a number of IT related topics. This includes exams, training, certification trends, project management, certification, careers advice and the industry itself. Sarah has 11 years of experience in the IT industry. 

Tuesday, 7 January 2014

The hottest certifications for 2014


By 


The value of IT and Project Management certifications have immensely increased as IT security, risk management, project management or computer forensics experts are more and more in demand.

According to the European Commission "there will be a deficit of over 900,000 trained IT staff in Europe by 2015”. Firebrand compiled a list of this year’s hottest IT and Project Management certifications to help you make the most of the 100,000s of job opportunities.

CISSP - Certified Information Systems Security Professional

The CISSP is an advanced level certification for information security professionals. As a CISSP, you’ll be an expert in developing, guiding, and managing security standards, policies, and procedures within your organisation.

(ISC)2 designed and developed CISSP for experienced security professionals. To obtain this certification, you’ll need a minimum of 5-years experience in at least two of the following (ISC)2 common body of knowledge domains:
  • Access Control
  • Telecommunications and Network Security
  • Information Security Governance and Risk Management
  • Software Development Security
  • Cryptography
  • Security Architecture and Design
  • Operations Security
  • Business Continuity and Disaster Recovery Planning
  • Legal, Regulations, Investigations and Compliance
  • Physical (Environmental) Security

The CISSP will be one of this year’s most sought after IT certifications and an overall must-have for IT security professionals.

PMP – Project Management Professional

Developed by project managers, PMP is the highest level credential offered by the Project Management Institute (PMI). The certification is designed to ensure that PMP holders possess the skills and qualifications to successfully manage all phases of a project, including:
  • Initiating
  • Planning
  • Scheduling
  • Controlling
  • Monitoring
  • Closing the project

PMP certified professionals are also experts in managing all aspects of the triple constraints – time, cost and scope.

In order to get PMP certified, credential seekers must demonstrate and prove they have the skills and knowledge required to be successful in the field of project management. Demonstrating documentations must include proof of education, projects worked on and hours spent in each of the five phases of project management.

CRISC - Certified in Risk and Information Systems Control

ISACA’s CRISC is awarded to IT professionals experienced in business and technology risk management, as well as the design, implementation, monitoring and maintenance of Information Systems Control.

As a CRISC certified professional, you’ll manage risk design and oversee response measures, monitor systems for risk, and ensure your organisation's risk management strategies are met.

Job roles for CRISC credential holders include:
  • IT Security Analyst
  • Security Engineer Architect
  • Information Assurance Program Manager
  • Senior IT Auditor

The CRISC exam covers the following domains:
  • Risk Assessment
  • Identification and Evaluation
  • Information Systems Control Monitoring and Maintenance
  • Risk Response
  • Information Systems Control Design and Implementation
  • Risk Monitoring

Since its inception in 2010, over 17,000 pros have obtained the CRISC certification.

CISM – Certified Information Security Manager

CISM, also developed by ISACA, is a top credential for IT security professionals specialising in managing, developing and overseeing information security systems or for developing best organisational security practices.

The credential targets the needs of IT security professionals with enterprise level security management responsibilities. CISM certified professionals possess advanced and proven skills in:
  • Security Risk Management
  • Program Development and Management
  • Governance, and Incident Management
  • Responding to Incidents

CISM credential holders must agree to the CISM Code of Professional Ethics, pass the examination, possess at least five years of security experience and submit a written application to qualify.

CHFI – Certified Hacking Forensic Investigator

EC-Council’s CHFI certification focuses on forensics tools, analytical techniques, and procedures involved in obtaining, maintaining, and presenting computer forensic evidence and data in a court of law.

The CHFI course covers the following topics:
  • Cyber-Crime Overview
  • Search and Seizure of Computers
  • Working with Digital Evidence
  • Incident Handling and First Responder Procedures
  • Gathering Volatile and Non-Volatile Data from a Windows Computer
  • Recovering Deleted Files and Partitions from Windows, Macintosh, and Linux Systems
  • Password Cracking
  • Log Capturing Tools and Techniques
  • Investigating Network Traffic, Wireless Attacks, Web Attacks, and E-mail Crimes

As a CHFI, you’ll be able to protect your organisation by responding promptly to any and all attacks.  

About the Author:       
Sarah writes for Firebrand Training on a number of IT related topics. This includes exams, training, certification trends, project management, certification, careers advice and the industry itself. Sarah has 11 years of experience in the IT industry. 

Monday, 6 January 2014

Tech Resolutions for 2014 by ISACA


By 


The New Year is here and we must be prepared for everything it may bring. According to global non-profit IT association ISACA, IT and cyber-security professionals will have to switch gears if they want to successfully deal with the challenges of 2014, especially in cyber-security, data privacy and big data.

“The pace of change expected in 2014 will put incredible pressure on technology professionals in the workplace with a focus on keeping IT risk in check while at the same time delivering value to the business. But this is also a chance for the IT department to be a strategic partner with the business on navigating these issues and opportunities,” said Bhavesh Bhagat, CISM, CGEIT, CEO of EnCrisp, co-founder of Confident Governance and member of ISACA’s new Emerging Business and Technology Committee.

ISACA’s Top 5 Tech Resolutions for 2014
  • Prepare for Privacy 2.0 - Attitudes toward data privacy are unlikely to reach a consensus in 2014. Instead, be prepared to accommodate both those with little expectation of privacy and those who view their personal data as currency and want to control how that currency is spent.
  • Slim down big data - Explosive data volumes were the #1 issue posed by big data in ISACA’s 2013 IT Risk/Reward Barometer. Unmanageable data creates redundancies and is difficult to keep safe. In 2014, eliminate the excess and consolidate what remains, to promote sharing and protect using better controls.
  • Plan to compete for cyber-security and data analytics experts - Demand for smart analytics people and cyber-security defenders with the right certifications is only going to increase in 2014—the year of the data professional. If you plan to recruit , make sure your salary package and job descriptions are competitive.
  • Rethink how your organisation is using your information security experts - With some elements of IT security operational responsibility (including malware detection, event analysis and control operation) increasingly being outsourced to cloud providers, smart leaders are enabling their internal security experts to become hunters instead of just defenders. This allows them to proactively deal with the most hard-to-detect threats, build internal intelligence capabilities, construct better metrics and invest in operational risk analysis.
  • Ramp up for the Internet of even more Things - With 50 billion devices expected to be connected to the Internet by 2020, start working now on a policy for governing connected devices—many invisible to the end user—if your enterprise doesn’t have one already.
Learn more about information security management, risk management or governance of IT on our ISACA courses.

About the Author:       
Sarah writes for Firebrand Training on a number of IT related topics. This includes exams, training, certification trends, project management, certification, careers advice and the industry itself. Sarah has 11 years of experience in the IT industry. 

Wednesday, 17 April 2013

ISACA’s highest-paying IT certs



By 


ISACA’s Certified Information Security Manager (CISM) and Certified in Risk and Information Systems Control (CRISC) certifications are two of the highest-paying IT certifications, according to the Foote Partners’ IT Skills and Certifications Pay IndexTM (ITSCPI).
ISACA CISM logo
“ISACA’s rigorous certification programs are designed to help IT professionals demonstrate to their employers their abilities to help the enterprise improve trust in, and value from, information systems,” said Allan Boardman, CISA, CISM, CGEIT, CRISC, CA (SA), ACA, CISSP, chair of ISACA’s Credentialing Board and risk manager at a global investment bank. “As the Foote Partners’ report indicates, professionals who hold the CISM or CRISC certifications are earning especially high premiums for their efforts and are strongly valued for their contributions to the overall enterprise.”

Since its inception 10 years ago, nearly 20,000 professionals have trained in CISM. The CISM certification is for individuals who manage, design, and oversee/assess a businesses’ information security (IS). The CISM certification is a globally recognised cert and provides executive management with assurance that those earning the designation have the required experience and skills to provide effective security management and consulting services.

The ITSCPI was launched in 1999 and tracks market values for individual IT skills and certifications at 2,350 employers.

For more information on ISACA certifications, visit: http://www.firebrandtraining.co.uk/courses/isaca

About the Author:
Sarah writes for Firebrand Training on a number of IT related topics. This includes exams, training, certification trends, project management, certification, careers advice and the industry itself. Sarah has 11 years of experience in the IT industry.

Friday, 8 March 2013

ISACA’s CISM and CRISC among highest-paying IT certs



By 



ISACA logoISACA’s Certified Information Security Manager (CISM) and Certified in Risk and Information Systems Control (CRISC) certifications are two of the highest-paying IT certifications, according to the Foote Partners’ IT Skills and Certifications Pay IndexTM (ITSCPI).

“ISACA’s rigorous certification programs are designed to help IT professionals demonstrate to their employers their abilities to help the enterprise improve trust in, and value from, information systems,” said Allan Boardman, CISA, CISM, CGEIT, CRISC, CA (SA), ACA, CISSP, chair of ISACA’s Credentialing Board and risk manager at a global investment bank. “As the Foote Partners’ report indicates, professionals who hold the CISM or CRISC certifications are earning especially high premiums for their efforts and are strongly valued for their contributions to the overall enterprise.”

Since its inception 10 years ago, nearly 20,000 professionals have trained in CISM. The CISM certification is for individuals who manage, design, and oversee/assess a businesses’ information security (IS). The CISM certification is a globally recognised cert and provides executive management with assurance that those earning the designation have the required experience and skills to provide effective security management and consulting services.

The ITSCPI was launched in 1999 and tracks market values for individual IT skills and certifications at 2,350 employers.

For more information on ISACA certifications, visit: www.firebrandtraining.co.uk/courses/isaca

About the Author:
Sarah writes for Firebrand Training on a number of IT related topics. This includes exams, training, certification trends, project management, certification, careers advice and the industry itself. Sarah has 11 years of experience in the IT industry.

Friday, 8 February 2013

CISA, CISM and CRISC awarded Best Professional Certification Program




By 


ISACA’s CISA, CISM and CRISC certification programs are finalists for the “Best Professional Certification Program” in SC Magazine’s 2013 Awards.


In a recent study by Foote Partners, it was found that CISA, CISM and CRISC certification holders earn pay premiums that place the certifications in the top 7 percent of all 268 IT industry certifications reported by Foote Partners.

According to the IT Skills and Certifications Pay Index, those who obtain the CISA, CISM or CRISC certifications are ranked among the highest paid professionals.

SC Magazine Awards 2013 FinalistsTo make this list, a certification program must average a pay premium in excess of the equivalent of 10% of base salary.

CISM was already voted among our top four security certifications. CISM is also highly sought after for IT positions. It is also widely recognised in organisations and government agencies.

It provides a body of knowledge for information security management, focusing mainly on information risk management. It also demonstrates to employers that the professional has a strong understanding of security governance, risk management and compliance, security program development and management, and security incident management.

According to itjobswatch.co.uk, the average salary for a CISM professional is £52,500.


About the Author:
Sarah writes for Firebrand Training on a number of IT related topics. This includes exams, IT training, IT certification trends, project management, certification, careers advice and the IT industry itself. Sarah has 11 years of experience in the IT industry.