We have all heard the old adage how big surprises can come in small packages. If you are a candidate who is studying for the CISSP exam, or if you are in the early stages of considering studying for the exam, you may be surprised that at all the opportunities that are available from a single certification. However, when taken in context with the benefits of the CISSP credential, very few other certifications carry the same respect and career-boosting potential as the CISSP. It is understandable why one might hesitate at reaching for what is often referred to as the “gold standard” of certifications. Many are initially intimidated by the broad subject matter covered by the CISSP Common Body of

The migration of business services, apps and data in the cloud has blurred traditional corporate perimeter. Legacy security solutions, based on securing the perimeter, are no longer adequate to address cloud security challenges and risks. Businesses need to evolve their traditional identity and access management (IAM) program to safeguard the access to their cloud-based assets and data. Digital identities are the foundation of modern IAM and organizations need to establish strong authentication methods to protect these identities. Weak IAM policies result in identities and credentials being vulnerable and compromised. Attackers are leveraging these stolen and compromised credentials to infiltrate corporate networks and move laterally. Cloud security professionals need to establish robust IAM programs for identity provisioning, centralized directory services, privileged

The Certified Information Systems Security Professional (CISSP) certification is considered to be the gold standard in information security. This is so because of all the doors that certification opens to a CISSP professional. Those doors lead to many different types of positions and opportunities, thus making the information security community dynamic and multifaceted. In support of this, (ISC)² has launched a series of interviews to explore where CISSP certification has led security professionals. In our last interview, we met Jason Lau. In this installment, we meet James Wright. He is a cybersecurity technologist with The Walt Disney Company. He is also a U.S. Air Force veteran and graduate of the University of Denver holding a Master of Science degree in Information

(ISC)² CEO Clar Rosso recently joined Megan Gavin, director of global events, for a webinar as part of the series Inside (ISC)². The two executives candidly discussed the 2021 (ISC)² Security Congress, taking place October 18-20, as well as the future of all (ISC)² global events. Megan shared that while Security Congress is changing from hybrid to virtual, the agenda, content, number of sessions and speakers will not be impacted, and the shift provides an opportunity for us to provide another world-class virtual conference. “As much as we’re disappointed that we will not see you in person, we are dedicated to building upon our 2020 successes to make this year’s virtual conference even better,” Megan promised. Improvements include increased virtual

No matter where you are in your cybersecurity career journey – a college graduate looking for your first professional role, an experienced staff member aiming to step into leadership, or a veteran manager wanting to expand your expertise – (ISC)² cybersecurity certifications can help you achieve your goals. With nine certifications to choose from (including our three CISSP concentrations), it may be difficult to know which qualification is right for you. The CISSP is the most well-known (ISC)² certification, with roughly 150,000 card-carrying members around the world, but that doesn’t mean it’s best for everyone. How to Know if CISSP is the Best (ISC)² Certification for You Using the new (ISC)² qualification pathfinder, you answer a few questions about your