A recent Forbes article pulled together a list of several cybersecurity stats that underpin the current state of the industry and threat landscape. The stats, which come from various private sector organizations, highlight the dire need for more cybersecurity professionals to keep up with adversarial threats. Some of the most alarming stats include: Cybercriminals can penetrate 93% of company networks (Positive Technologies) Businesses suffered 50% more cyberattack attempts per week in 2021 (CheckPoint Software) The threat of ransomware attacks, data breaches or significant IT outages worries companies even more than business and supply chain disruption, natural disasters or the COVID-19 pandemic (Allianz Risk Barometer) In 2021, 37% of all businesses and organizations were hit by ransomware (Sophos) The global cost of ransomware in 2021

One week to go until the first (ISC)² entry-level cybersecurity pilot exam! Interested individuals can register for the pilot exam online through Pearson VUE. (ISC)² created the forthcoming entry-level cybersecurity certification to establish a clear new pathway for the next generation of professionals to pursue a rewarding career in cybersecurity. The new entry-level cybersecurity certification was also created to establish a recognized, global measure for skills verification, giving hiring managers confidence that prospective employees for entry- and junior-level cybersecurity roles have the required foundational knowledge, skills and abilities, along with an aptitude for on-the-job learning. The certification will play a major role in expanding the global cybersecurity workforce and helping employers tackle a global cybersecurity skills shortage in excess of

To help candidates prepare for the forthcoming entry-level cybersecurity certification pilot exam, (ISC)² released a new education program—a live or on-demand expert instruction on the fundamental cybersecurity concepts and five domains covered by the certification. The five domains included in the pilot exam outline are: Security Principles Business Continuity (BC), Disaster Recovery (DR) & Incident Response Concepts Access Controls Concepts Network Security Security Operations In preparation for taking the entry-level cybersecurity certification pilot exam, candidates can choose one of three live two-hour instructor-led review sessions taking place on January 25, 26 and 27. Each session will accommodate 40 students and will be recorded for on-demand playback for those who cannot attend live. Each session includes access to example questions, helping candidates review

The need is real. The shortage of cybersecurity talent presents a clear and present danger in virtually every corner of the globe as bad actors plot their next move. How wide is the gap? Recent research shows the cyber workforce must grow by 65 percent to adequately defend organizations’ critical assets.* No excuses — now is your time to commit to certification. Because a safe and secure cyber world can’t wait. (ISC)² is here to help, starting with your Exam Action Plan. Whether you’re pursuing CISSP, SSCP, CCSP, CAP, CSSLP, HCISPP or a CISSP Concentration, you’ll go into it prepared with: Exam registration and testing guidelines What to expect How to prepare with confidence Training and study resources Pro tips from certified (ISC)² members Looking back, was 2021 the

(ISC)² regularly conducts Job Task Analysis (JTA) studies to review and update the content outline (or exam blueprint) of its credentialing examinations.  A JTA is the methodical process used to determine tasks that are performed by credential holders and knowledge and skills required to perform those tasks successfully. Results of the JTA study link a candidate’s examination score directly to the domain knowledge being tested. A JTA Study Workshop for CSSLP has tentatively been scheduled in early February 2022.  In preparation for the upcoming study, we would like to hear from our CSSLP members in good standing. Please comment on the new and emerging secure software lifecycle development issues that you feel should be addressed in the CSSLP exam. This