Blog

(ISC)² regularly conducts Job Task Analysis (JTA) studies to review and update the content outline of its credentialing examinations. A JTA is the methodical process used to determine tasks that are performed by credential holders and knowledge and skills required to perform those tasks successfully. Results of the JTA study link a candidate’s examination score directly to the domain knowledge being tested. A JTA Study Workshop for CISSP-ISSAP has tentatively been scheduled toward the end of March 2019. In preparation for the upcoming study, we would like to hear from our CISSP-ISSAP members. Please comment on any new content and emerging concepts or technology in the security architecture field that needs to be covered by the CISSP-ISSAP exam. This is

This week, SC Media released its list of Finalists for the 2019 SC Awards and (ISC)2 is once again in consideration as the best professional certification program in the cybersecurity industry. Winners will be announced at the SC Awards dinner, a gala evening convening hundreds of the industry’s brightest luminaries to network, toast the winners, and celebrate the best the cybersecurity community has to offer. The event takes place on March 5 at the InterContinental Hotel in San Francisco during the week of RSA Conference. Tickets can be purchased here.

Name: Ramana Krothapalli Title: Consultant - Information Security & GRCEmployer: Self-EmployedLocation: Hyderabad, IndiaEducation: M.Sc., PGDCAYears in IT: 7Years in cybersecurity and/or privacy: 17Cybersecurity certifications: CISSP, HCISSP, CISA, CISM, ISO 27001 LA   How did you decide upon a career in healthcare security and/or privacy? It’s rather a chance than a choice. As the chief information security officer (CISO) of a software development firm, I was tasked to implement information security and privacy in multiple healthcare development projects. I am happy that I could contribute to security of healthcare.   Why did you decide to pursue your HCISPP? Apart from learning and educating myself about privacy concepts, I wanted to acquire a global certification in privacy, specific to the healthcare industry, to

The National Cyber Security Centre (NCSC) has outlined new rules of the road for earning its Certified Cyber Professional (CCP) specialist certification. The new pilot program for the certification commences in 2019 and focuses on assessing two main areas of specialism: risk management and security architecture. Why is this of interest to you? The NCSC has outlined three ways in which candidates can demonstrate foundational cybersecurity knowledge in order to qualify for the scheme. One of those ways is to hold a CISSP certification and a full (ISC)2 membership. This is yet another signpost that highlights the industry recognition of our noted certification. As the NCSC blog post states: “As you’d expect, we’ve spent a lot of time reviewing professional

Our own John McCumber, director of cybersecurity advocacy for North America, was provided a great opportunity this week to present the findings from our recent 2018 Cybersecurity Workforce Study to the National Initiative for Cybersecurity Education Working Group (NICEWG) at its monthly meeting. As you may well know – or can guess –  this working group covers the NICE Framework published by the National Institute for Standards and Technology (NIST) and brings together a diverse group of public and private sector cybersecurity experts to discuss ways to advance cybersecurity education, training and workforce development. To be invited to present to this group is a big step for our association and shows the recognition that (ISC)2 and our membership enjoy among

Name: Shawn O’Reilly Title: Information Security Officer Employer: SUNY Upstate Medical UniversityLocation: Syracuse, New YorkEducation: Master’s in Information Management, Syracuse UniversityYears in IT: 25Years in cybersecurity and/or privacy: 20Cybersecurity certifications: CISSP, CCSP, HCISPP, CISM, CISA   How did you decide upon a career in healthcare security and privacy? The opportunity to move into a healthcare security and privacy career presented itself about 15 years ago when I was searching for a new job. I was previously employed by a Big 4 accounting firm, where I got my start as a cybersecurity consultant. I was looking to move to another company where I could take my skills and knowledge learned as a consultant and make a significant impact at one organization