Certified Information Systems Security Professional

(ISC)2 supports and provides two primary certifications: CISSP and SSCP. These certifications are designed to emphasize the knowledge and skills of an IT security professional across all industries. CISSP is a certification for security professionals who have the task of designing a security infrastructure for an organization. System Security Certified Practitioner (SSCP) is a certification for security professionals who have the responsibility of implementing a security infrastructure in an organization. The CISSP certification covers material from the 10 CBK domains: 1. Access Control Systems and Methodology 2. Telecommunications and Netw

Read more »

Introduction to Public Key Technology and the Federal PKI Infrastructure

Public Key Infrastructures (PKIs) can speed up and simplify delivery of products and services by providing electronic approaches to processes that historically have been paper based. These electronic solutions depend on data integrity and authenticity. Both can be accomplished by binding a unique digital signature to an individual and ensuring that the digital signature cannot be forged. The individual can then digitally sign data and the recipient can verify the originator of the data and that the data has not been modified without the originator’s knowledge. In addition, the PKI can provide encryption capabilities to ensure privacy. As with all

Read more »

Risk Management Guide for Information Technology Systems

This guide describes the risk management methodology, how it fits into each phase of the SDLC,and how the risk management process is tied to the process of system authorization (oraccreditation). IMPORTANCE OF RISK MANAGEMENT Risk management encompasses three processes: risk assessment, risk mitigation, and evaluation and assessment. Section 3 of this guide describes the risk assessment process, which includes identification and evaluation of risks and risk impacts, and recommendation of risk-reducing measures. Section 4 describes risk mitigation, which refers to prioritizing, implementing, and maintaining the appropriate risk-reducing measures

Read more »

Active Directory

Welcome to the Windows Server 2008 Active Directory Resource Kit, your complete source for the information you need to design and implement Active Directory in Windows Server 2008. The Windows Server 2008 Active Directory Resource Kit is a comprehensive technical resource for planning, deploying, maintaining, and troubleshooting an Active Directory infrastructure in Windows Server 2008. While the target audience for this Resource Kit is experienced IT professionals who work in medium-sized and large-sized organizations, anyone who wants to learn how to implement and manage Active Directory in Windows Server 2008 will find this Resource Kit invaluab

Read more »

ITIL Version 3

Service providers are increasingly focusing on service quality while adopting a more business and customer oriented approach to delivering services and cost optimization. Many organizations deliver significant change through formal projects, and the failure to ensure that projects address the full Service Management and operational requirements as well as the functional requirements can be a costly, or even fatal, mistake to an organization. Service Transition ensures that the transition processes are streamlined, effective and efficient so that the risk of delay is minimized.  It establishes assurance of the expected and actual service del

Read more »

ISO/IEC 27000

  Abstract ISO/IEC 27000:2009 provides an overview of information security management systems, which form the subject of the information security management system (ISMS) family of standards, and defines related terms. As a result of implementing ISO/IEC 27000:2009, all types of organization (e.g. commercial enterprises, government agencies and non-profit organizations) are expected to obtain: an overview of the ISMS family of standards; an introduction to information security management systems (ISMS); a brief description of the Plan-Do-Check-Act (PDCA) process; and an understanding of terms and definitions in use throughout the

Read more »

Exam CEH

EC-Council’s Ethical Hacking and Countermeasures (CEH) is the most advanced ethical hacking and security assessment course available today. The program covers extensive skills on exploiting systems, networks, devices and operating platforms and hacking concepts such as vulnerability assessment, network intrusion, advance viruses, Trojans, and other malware, reverse engineering, defacing websites, damaging network appliances, launching distributed denial-of-service attacks, massive worm propagation, breaking passwords, bruteforcing authentication systems, crack

Read more »

Ebook and Simulation CCNA

Goal for Course is “To provide you with the knowledge and skills necessary to install, operate, and troubleshoot a small network”. What Is the Lifecycle Services Framework? The Cisco Lifecycle Services Framework defines the minimum set of activities needed to deploy, operate, and optimize Cisco technologies successfully throughout the lifecycle of a network. There are six phases in the network lifecycle: Prepare, Plan, Design, Implement, Operate and Optimize. Each phase has a set of service components comprising activities and deliverables to help ensure service excellence. A network service is performed when a service component it

Read more »

Certified in Risk and Information Systems Control (CRISC)

 CRISC is the only certification that prepares and enables IT professionals for the unique challenges of  IT and enterprise risk management, and positions them to become strategic partners to the enterprise. CRISC Impacts Your Career and Your Organization CRISC is the most current and rigorous assessment available to evaluate the risk management proficiency of IT professionals and other employees within an enterprise or financial institute.Those who earn CRISC help enterprises to understand business risk, and have the technical knowledge to implement appropriate IS controls. CRISC Certification:  &nb

Read more »

CSCU

The purpose of the CSCU training program is to provide students with the necessary knowledge and skills to protect their information assets. This class will immerse students into an interactive environment where they will acquire fundamental understanding of various computer and network security threats such as identity theft, credit card fraud, online banking phishing scams, virus and backdoors, emails hoaxes, sex offenders lurking online, loss of confidential information, hacking attacks and social engineering.  More importantly, the skills learnt from the  class helps students take the necessary steps to mitigate t

Read more »

CHFI

CHFI v8 Program certifies individuals in the specific security discipline of computer forensics from a vendor-neutral perspective. The C|HFI certification will fortify the application knowledge of law enforcement personnel, system administrators, security officers, defense and military personal, legal professionals, bankers, security professionals, and anyone who is concerned about the integrity of the network infrastructure.  Computer hacking forensic investigation is the process of detecting hacking attacks and properly extracting evidence to report the crime and conduct audits to prevent future attacks. C

Read more »

CEH

This is the worlds most advanced ethical hacking course with 19 of the most current security domains any ethical hacker will ever want to know when they are planning to beef up the information security posture of their organization. The goal of this course is to help you master an ethical hacking methodology that can be used in a penetration testing or ethical hacking situation. You walk out the door with hacking skills that are highly in demand, as well as the internationally recognized Certified Ethical Hacker certification! This course prepares you for EC-Council Certified Ethical Hacker exam 312-50. Learn more

Read more »

CISM

CISM means higher earning potential and career advancement. Recent independent studies consistently rank CISM as one of the highest paying and sought after IT certifications.  Enhance your competitive advantageDemonstrate your information security management expertise. The uniquely management-focused CISM certification promotes international security practices and recognizes the individual who manages designs, and oversees and assesses an enterprise’s information security.Key Exam Registration Dates: 6 September 2014 Exam*14 April 2014     Registration Opens21 July 2014     Final Registration Deadlineregis

Read more »

How to Become CISA Certified

The CISA designation is awarded to individuals with an interest in Information Systems auditing, control and security who meet the following requirements: 1. Successful completion of the CISA Examination The examination is open to all individuals who have an interest in information systems audit, control and security. All are encouraged to work toward and take the examination. Successful examination candidates will be sent all information required to apply for certification with their notification of a passing score. For a more detailed description of the exam see CISA Certification Job Practice. Also, CISA Exam Preparation resources ar

Read more »

Certified Information Systems Auditor (CISA)

The CISA designation is a globally recognized certification for IS audit control, assurance and security professionals. Being CISA-certified showcases your audit experience, skills and knowledge, and demonstrates you are capable to manage vulnerabilities, ensure compliance and institute controls within the enterprise. Key Exam Registration Dates:6 September 2014 Exam*  14 April 2014     Registration Opens21 July 2014     Final Registration Deadlineregister for the September exam *ISACA is offering the September 2014 CISA exam at limited locations worldwide.13 December 2014 Exam  15 May 2014 &n

Read more »