Blog

A Look Back at 2021 In 2021, 45 states and Puerto Rico introduced or considered 301 pieces of legislation dealing with cybersecurity. Of those 45 states, 35 enacted bills pertaining to cybersecurity. Topics covered in adopted state legislation include strengthening security measures for protecting government agencies and resources, cybersecurity training, data, ransomware, resources and the creation of task forces, studies and commissions. North Carolina became the first state to pass a law that would prohibit government entities from paying ransomware demands. Indiana passed legislation that requires reporting for all incidents related to ransomware. Both Connecticut and Utah passed bills that provide incentives for the private sector to put reasonable security practices in place to prepare for possible cybersecurity breaches. Georgia, Kansas, Michigan, Vermont and

Morale among most cybersecurity professionals remains high despite the stressors brought on by the pandemic. 29% of respondents to the (ISC)² 2021 Cybersecurity Workforce Study reported personal morale as above average, with another 26% stating it was excellent. Overall team morale was also found to be high, with 51% of respondents rating it above average, followed by 20% selecting excellent. In the past two years, the majority of employers have implemented work-from-home policies, 94% in 2021. This rapid shift that began as a public health matter has created lasting change that has workers looking to say home permanently and businesses consolidating their real estate footprint. According to the Workforce Study, only 24% of companies plan to return to their pre-pandemic

If you are a CISSP exam candidate interested in taking the exam online, please consider participating in our next online proctor pilot program. Our exams team began working with Pearson VUE to explore online testing solutions, and we were able to pilot online exams for the first time last year. Read more about the February 2021 online proctored exams results. (ISC)² announced this week that the next online CISSP proctor pilot test will open for registration on February 14. Seats for the online exams will be limited and will only include the CISSP CAT exam for candidates in the U.S., U.K. and Singapore. What We Changed With exam integrity our primary objective, we have established new identity validation and security

In case you missed it, (ISC)² is piloting an entry-level cybersecurity certification exam to help students, young professionals and career changers interested in building a career in cybersecurity receive the education and validation they need on their way to a rewarding career. With a global cybersecurity skills shortage of more than 2.7 million people, this certification plays a critical role in expanding the available talent pool and quickly verifies candidates’ current skills, but more importantly their aptitude for learning on the job. No Experience Required (ISC)² recognizes and supports the growing trend of people entering the cybersecurity workforce without direct IT experience. As such, the entry-level cybersecurity certification pilot exam is designed to assess candidates’ foundational cybersecurity knowledge while remaining

(ISC)² has added two additional offerings to our online instructor-led review sessions in support of the new entry-level cybersecurity certification pilot exam. Our recent offering sold out in record time, and these first come, first serve opportunities are expected to do the same. The five domains included in the pilot exam outline are: Security Principles Business Continuity (BC), Disaster Recovery (DR) & Incident Response Concepts Access Controls Concepts Network Security Security Operations The entry-level cybersecurity certification pilot program will play a leading role in expanding the global cybersecurity workforce, creating new career opportunities and qualification pathways for individuals, and helping employers tackle a global cybersecurity skills shortage in excess of 2.7 million. Review sessions are available and can be booked for U.S.

By Keith Bruce, CISSP and IT Security Compliance Analyst. Keith’s primary focus is on ISO 27001 compliance and team analytics, but also manages vulnerability, policy, penetration testing and client audit review programs, just to name a few. Introduction The internet offers a plethora of information about you and everyone else, whether we like it or not. Our personal information is out there if you know where and how to look for it. Everything is tracked. Everything. All we need to do is dig a little deeper to find more information that may be public, or private for that matter. Default tracking settings for mobile, smart devices or the Internet of Things (IoT) are conveniently turned on by the manufacturer or