Page 18 - Cyber Warnings
P. 18
The need for “C” level understanding and leadership is vital in defending against the threat.
Executive-level training should include all of the basic training required for the entire workforce
of the organization; some mid-level awareness training in order to understand the true nature of
the threat; and, at a senior-level, knowledge of network vulnerabilities and the risk management
required to assist in the tough decisions necessary in the delicate balance of budget spending
for IT security and training that is necessary to mitigate threats.
Training and Certification for the Cybersecurity Professional
While there is no “silver bullet” to protect against all cyber threats, there are advanced training
and certificate programs that help cybersecurity professionals develop their expertise. From the
novice to the seasoned professional, the cybersecurity field offers a vast selection of career
opportunities and areas of specialization, each with specific training and certification
requirements.
For those entering or in the early stages of a cybersecurity career, training and certifications
provide an advantage over the competition to “get their foot in the door” of a IT security position,
especially as the gap between the number of trained cybersecurity professionals and the need
for such workers continues to grow. Security-related certifications are a requirement for
cybersecurity jobs in the government as well as most industry positions.
With rampant resume inflation and degrees that sometimes aren't in technical fields,
certifications provide a means to measure knowledge and level of expertise in a given technical
field. In addition, certifications are an indicator of expertise in both written knowledge and in
operating essential types of Computer Network Defense (CND) specific tools. General IT
certifications such as those available at the myriad of training companies assist in providing the
essential skills for network security and risk management, all of which are often the foundation
for a career in cybersecurity.
On-going training and certifications help cyber security professionals broaden their skill-sets and
are the discriminators for career advancement into management positions and the higher end of
the pay scale. For the seasoned cybersecurity professional, training provides the opportunity to
gain the technical knowledge necessary to hunt for and remove malicious files, create
signatures to detect and protect from future similar events, create procedures to assist with
preventing similar future threats, and help assign attribution to the entity that caused the threat.
Examples of advanced certifications include the Certified Information Systems Security
Professional (CISSP), the Certified Penetration Testing Consultant (CPTC), the GIAC Certified
Penetration Tester (GPEN), the Offensive Security Certified Professional (OSCP), the Certified
Ethical Hacker (CEH), the EC-Council Certified Security Analyst (ECSA) and the GIAC Reverse
Engineering Malware (GREM).
These advanced certifications among many others enable cyber personnel to manage day-to-
day job challenges in a demanding threat environment.
18 Cyber Warnings E-Magazine – March 2016 Edition
Copyright © Cyber Defense Magazine, All rights reserved worldwide
