As practitioners know all too well, it is paramount to remain up to date with the changing landscape of cybersecurity. We regularly conduct Job Task Analysis (JTA) studies to review exam content and outlines to ensure the accuracy, relevance and excellence of all (ISC)² exams.   The Certified in Governance, Risk and Compliance (CGRC), formerly known as the Certified Authorization Professional (CAP) exam, was last refreshed in 2021. The certification is undergoing a name change to more accurately reflect the knowledge, skills and abilities required to earn and maintain this certification. As part of our regular updates to exams, it is now time to refresh the (ISC)² CGRC exam to better align with best governance, risk and compliance professional practices.   We

The LockBit ransomware gang apologizes, Google settles privacy lawsuits and cybercriminals impersonate brands and the U.K. government. Here are the latest threats and advisories for the week of January 6, 2023. Threat Advisories and Alerts Cybercriminals Impersonate Brands with Search Ads And Fake Sites The U.S. Federal Bureau of Investigation (FBI) has issued a warning that cybercriminals are directing internet browsers to malicious sites via search ads. How does the scam work? Bad actors build a fake website that impersonates a legitimate brand and then advertises it to appear at the top of search results. Once browsers click the ad, the malicious site prompts them to enter login credentials, financial information or download ransomware that’s disguised as a program. Source:

The (ISC)² New Jersey Chapter held their first virtual international event, which hosted more than 20 thought leaders and 500 registered chapter member attendees. The International (ISC)² Chapter Conference, SECON International, took place virtually, on December 1, 2022, and delivered intriguing content on various cybersecurity topics. The conference featured Ted-talk style presentations across three tracks during a three-hour event. The New Jersey Chapter hopes that by sharing their successes, it can help other chapters to either replicate their event or encourage them to join this conference in the future. This event was a collaboration between several (ISC)² chapters on a global scale which produced tangible business value added benefits for attendees. The New Jersey Chapter’s leadership considered their event’s biggest

With more than 150,000 CISSPs around the world, some of you have asked – what's the next step? For many of you, that next step is one of the CISSP concentrations focused on security architecture, engineering or management. The CISSP-ISSAP exam was last updated in October 2020, which means we are beginning the process of a refresh again. (ISC)² is holding a Job Task Analysis (JTA) Study Workshop (tentatively scheduled for February 6-8), we are asking those who hold this (or any) CISSP concentration to review the current CISSP-ISSAP Exam Outline and let us know the following: Do you believe that the current CISSP-ISSAP exam outline adequately covers the existing and emerging cybersecurity techniques and threats CISSP-ISSAP practitioners are facing