In an effort to introduce more talent into the cybersecurity workforce, make cybersecurity a more accessible, inclusive and diverse profession, and close the cybersecurity skills gap, (ISC)² will pilot a new entry-level cybersecurity certification exam as part of its portfolio of industry qualifications. The entry-level certification will provide students, new entrants and career changers with clear and attainable professional development and career pathways from day one. In addition, it will give employers the confidence that new entrants into the sector have a solid grasp of the right technical, ethical and operational practices on which to build and learn. As a foundational certification, it will play a role in helping employers, educators, and governments close the cybersecurity workforce shortage by narrowing

The (ISC)² Diversity Award honors individuals who have made significant contributions to building a more diverse workforce in the cybersecurity community. Asia-Pacific Region (ISC)² Diversity Award Honoree Neha Malhotra, CISSP, CCSP is the Vice President, Tech & Cybersecurity Operational Risk Manager at JP Morgan Chase, and was earlier working within Cyber Security Attack Surface Management at Credit Suisse. Neha is an information & cybersecurity professional based in Singapore, with more than 15 years of IT and leadership experience within the BFSI, consulting and manufacturing sectors. Neha was nominated for her advocacy work mentoring and serving as a career advisor for women in cybersecurity. She serves on the board of (ISC)² Singapore Chapter and is a cyber champion driving security awareness. She is

We asked CISSPs and CSSPs around the world, “If you could say anything to your CEO about hiring for the cloud, what would it be?” Respondents said one of the biggest challenges facing cloud specialists and senior executives in the C-suite is the difference in what each side holds as priority. While senior executives are as passionate as cloud experts about protecting their organization and ensuring security and growth for the long-term — their interests are built around issues of fiscal responsibility. At the same time, cloud specialists seek to explore the people, processes and tools that will help ensure their organization’s protection, security and growth — and that requires a financial investment. From the perspectives of cybersecurity experts, what

The decision to authorize (or not) an information system to operate within an organization is the result of an on-going project that needs to be dealt effectively to be successful and prevent your business from being exposed to unwanted threats. As NIST highlights, authorization to operate (ATO) is a “management decision to explicitly accept the risks” from operating an information system. An authorizing officer needs not only have executive buy-in to fulfill their project, but they need to possess the foundational knowledge required to avoid project scope creep. An (ISC)² Certified Authorization Professional (CAP) is the practitioner who can exercise sound security risk management in pursuit of information system authorization to support an organization’s operations in accordance with legal and

When asked how CISOs could better address the impact of the cybersecurity skills shortage, the most popular suggestion was to increase the overall commitment to training, according to The Life and Times of Cybersecurity Professionals report from Enterprise Strategy Group and the Information Systems Security Association. In fact, security professionals must continue developing their professional skills or put their organizations at a competitive disadvantage, according to 91 percent of respondents. But with so many training and certification options out there, which most effectively demonstrates the broad knowledge and skills required to secure cloud environments? Let’s compare three leading cybersecurity certifications: (ISC)² Certified Cloud Security Professional (CCSP) vs. Cisco Certified Network Associate (CCNA) and Cisco Certified Network Professional (CCNP) Data Center.