SlideShare a Scribd company logo

wannabe Cyberpunk; “I don’t know what I’m supposed to do.”

Moshiul Islam, CISSP, CISA, CFE
Moshiul Islam, CISSP, CISA, CFE

guidance on required skills and industry certification to become successful information security professional

Career
1 of 27
Wannabe Cyberpunk; “I don’t know what I’m supposed to do.” Moshiul Islam , CISSP, CISA, CFE Founder, Leader & Chair- OWASP Bangladesh Chapter 1
Information Security VS Cyber Security Source: https://www.novainfosec.com/2014/05/05/cyber-security-versus-information-security/ 2
Terms  Hacker  Cracker  Phreaker  Script kiddies  Security Pro 3
Script Kiddie  In programming and hacking culture, a script kiddie or skiddie (other names include skid or script bunny) is an unskilled individual who uses scripts or programs developed by others to attack computer systems and networks and deface websites.  Taken from Script kiddie – Wikipedia 4
Where we are? 5
Is it that Challenging? 6
Kristoffer von Hassel 7
Is it that easy??? 8
How much of the Internet is accessible by Google? 9
Pills to become security Pro 10
Career options 11 Professional Academic WebApp Security Pro InfoSec Network Security Pro Cryptanalyst Reverse Engineer/Malware Analyst Security Manager Cloud Security Pro Mobile & IOT Security Pro Forensic Investigator Code Reviewer Security Tester/Pen Tester PHD Independent Researcher
InfoSec Job Title & Hierarchy CISO Security Architect/Director Security Manager/ Engineer Team Leader Security Officer/Analyst 12
13
Malware 14
Malware Analyst Jobs 15
Where do I start?  Tuts4You.com Tutorials  https://blog.malwarebytes.com/security-world/2012/09/so-you-want-to-be-a-malware-analyst/  https://digital-forensics.sans.org/blog/2010/11/12/get-started-with-malware-analysis/ 16
Cryptanalyst  A Cryptographer develops algorithms, ciphers and security systems to encrypt sensitive information.  A Cryptanalyst analyzes and decrypts any type of hidden information (e.g. encrypted data, cipher texts, telecommunications protocols) in cryptographic security systems.  You are the code maker and the code breaker, the professional who ensures that private data regarding finance, national security and other important spheres are hidden from marauding cyber-terrorists.  http://www.ed.ac.uk/files/imports/fileManager/Careers_in_Cryptology.pdf 17
Over 100+ certification in Cyber Security  Certifications only make up maybe 10% of what security professionals should be focusing on in managing their career  No certification certifies you as BEST security Pro  It certifies having minimum level of industry accepted knowledge  Always choose vendor neutral certification 18
Skills VS Certification  Hackers have curiosity, perseverance, focus, and creativity.  Certification is not one of them!!!  Security Pro should have …………. 19
Toward a Stable Career Your career rests on 4 legs 1. Education 2. Skills & Experience 3. Certifications 4. “Who you know” 20
Job Board Search Results Certification SimplyHired Indeed LinkedIn Jobs TechCareers Total CISSP 10,526 11,617 7,632 15,212 44,987 OSCP 451 500 599 5932 7482 CISM 3,286 3,585 2,337 10,629 19,837 GSEC 1,317 1,477 954 128 3,876 Security+ 3,038 3,396 1,275 1,431 9,140 21
CompTIA Security+ Facts & Figures Certification Name CompTIA Security+ Prerequisites & Required Courses None. CompTIA recommends at least two years of experience in IT administration (with a security focus) and the Network+ credential before taking the Security+ exam. Number of Exams One: SYO-401 Cost of Exam USD 311 (discounts may apply) URL https://certification.comptia.org/certifications/security Self-Study Materials Exam objectives, sample exam questions, the CertMaster online training tool, training kits, computer-based training and a comprehensive study guide are available at CompTIA.org. 22
OSCP Facts & Figures Certification Name Offensive Security Certified Professional (OSCP) Prerequisites & Required Courses Penetration Testing with Kali Linux training course Number of Exams 1 twenty-four (24) hour certification exam Cost of Exam $ USD 800 (Online training +1 month Lab+ Exam) URL https://www.offensive-security.com/information-security-training/penetration-testing- training-kali-linux/ Self-Study Materials Provided upon registration 23
CISM Facts & Figure Certification Name Certified Information Security Manager (CISM) Prerequisites & Required Courses 1.To obtain the CISM credential, candidates must do the following: Pass the CISM exam. 2.Meet the experience criteria 3.Agree to the CISM Continuing Education Policy. Cost of Exam Online early registration: member $450, nonmember $63 Mailed/faxed early registration fee: member $525, nonmember $710 Online final registration deadline fee: member $500, nonmember $685 Mailed/faxed final registration deadline fee: member $575, nonmember $760 URL http://www.isaca.org/Certification/CISM-Certified-Information-Security-Manager/Pages/default.aspx Self-Study Materials Training and study materials in various languages, information on Job Practice Areas, primary references, publications, articles, the ISACA Journal, review courses, exam prep community, terminology lists, a glossary and more are available at ISACA.org. 24
CISSP Facts & Figures Certification Name Certified Information Systems Security Professional (CISSP) Optional CISSP concentrations: • CISSP Architecture (CISSP-ISSAP) • CISSP Engineering (CISSP-ISSEP) • CISSP Management (CISSP-ISSMP) Prerequisites & Required Courses At least five years of paid, full-time experience in at least two of the eight (ISC)2 domains or four years of paid, full-time experience in at least two of the eight (ISC)2 domains and a college degree. Number of Exams One for CISSP (250 multiple-choice and advanced innovative questions, six hours) One for each concentration area Cost of Exam CISSP is USD 599; each CISSP concentration is USD 399 URL https://www.isc2.org/CISSP/Default.aspx Self-Study Materials See the CISSP Exam Preparation web page. A variety of training materials are available, including instructor-led, live online, on-demand and private training. An exam outline is available for candidate review, as well as study guides, a study app, interactive flashcards and practice tests. 25
Q&A 26
Thank You 27 Moshiul.islam@owasp.org

Recommended

DevOps and Application Security
DevOps and Application SecurityDevOps and Application Security
DevOps and Application SecurityShahee Mirza
 
Talk DevSecOps to me
Talk DevSecOps to meTalk DevSecOps to me
Talk DevSecOps to meMichelle Ribeiro
 
Secure Your Code Implement DevSecOps in Azure
Secure Your Code Implement DevSecOps in AzureSecure Your Code Implement DevSecOps in Azure
Secure Your Code Implement DevSecOps in Azurekloia
 
PIACERE - DevSecOps Automated
PIACERE - DevSecOps AutomatedPIACERE - DevSecOps Automated
PIACERE - DevSecOps AutomatedPIACERE
 
DevSecOps: Minimizing Risk, Improving Security
DevSecOps: Minimizing Risk, Improving SecurityDevSecOps: Minimizing Risk, Improving Security
DevSecOps: Minimizing Risk, Improving SecurityFranklin Mosley
 
Dev seccon london 2016 intelliment security
Dev seccon london 2016 intelliment securityDev seccon london 2016 intelliment security
Dev seccon london 2016 intelliment securityDevSecCon
 
Introduction to DevSecOps
Introduction to DevSecOpsIntroduction to DevSecOps
Introduction to DevSecOpsSetu Parimi
 
DevSecOps
DevSecOpsDevSecOps
DevSecOpsJoel Divekar
 

Recommended

DevOps and Application Security
DevOps and Application SecurityDevOps and Application Security
DevOps and Application SecurityShahee Mirza
 
Talk DevSecOps to me
Talk DevSecOps to meTalk DevSecOps to me
Talk DevSecOps to meMichelle Ribeiro
 
Secure Your Code Implement DevSecOps in Azure
Secure Your Code Implement DevSecOps in AzureSecure Your Code Implement DevSecOps in Azure
Secure Your Code Implement DevSecOps in Azurekloia
 
PIACERE - DevSecOps Automated
PIACERE - DevSecOps AutomatedPIACERE - DevSecOps Automated
PIACERE - DevSecOps AutomatedPIACERE
 
DevSecOps: Minimizing Risk, Improving Security
DevSecOps: Minimizing Risk, Improving SecurityDevSecOps: Minimizing Risk, Improving Security
DevSecOps: Minimizing Risk, Improving SecurityFranklin Mosley
 
Dev seccon london 2016 intelliment security
Dev seccon london 2016 intelliment securityDev seccon london 2016 intelliment security
Dev seccon london 2016 intelliment securityDevSecCon
 
Introduction to DevSecOps
Introduction to DevSecOpsIntroduction to DevSecOps
Introduction to DevSecOpsSetu Parimi
 
DevSecOps
DevSecOpsDevSecOps
DevSecOpsJoel Divekar
 
Benefits of DevSecOps
Benefits of DevSecOpsBenefits of DevSecOps
Benefits of DevSecOpsFinto Thomas , CISSP, TOGAF, CCSP, ITIL. JNCIS
 
SecDevOps 2.0 - Managing Your Robot Army
SecDevOps 2.0 - Managing Your Robot ArmySecDevOps 2.0 - Managing Your Robot Army
SecDevOps 2.0 - Managing Your Robot Armyconjur_inc
 
Introduction to DevSecOps
Introduction to DevSecOpsIntroduction to DevSecOps
Introduction to DevSecOpsabhimanyubhogwan
 
DevSecOps in Baby Steps
DevSecOps in Baby StepsDevSecOps in Baby Steps
DevSecOps in Baby StepsPriyanka Aash
 
Elizabeth Lawler - Devops, security, and compliance working in unison
Elizabeth Lawler - Devops, security, and compliance working in unisonElizabeth Lawler - Devops, security, and compliance working in unison
Elizabeth Lawler - Devops, security, and compliance working in unisonDevSecCon
 
DevSecOps Beginners Guide : How to secure process in DevOps with OpenSource
DevSecOps Beginners Guide : How to secure process in DevOps with OpenSourceDevSecOps Beginners Guide : How to secure process in DevOps with OpenSource
DevSecOps Beginners Guide : How to secure process in DevOps with OpenSourceDevOps Indonesia
 
Implementing DevSecOps
Implementing DevSecOpsImplementing DevSecOps
Implementing DevSecOpsAmazon Web Services
 
Why should developers care about container security?
Why should developers care about container security?Why should developers care about container security?
Why should developers care about container security?Eric Smalling
 
DevSecOps - CrikeyCon 2017
DevSecOps - CrikeyCon 2017DevSecOps - CrikeyCon 2017
DevSecOps - CrikeyCon 2017kieranjacobsen
 
[OWASP Poland Day] Security in developer's life
[OWASP Poland Day] Security in developer's life[OWASP Poland Day] Security in developer's life
[OWASP Poland Day] Security in developer's lifeOWASP
 
SC conference - Building AppSec Teams
SC conference - Building AppSec TeamsSC conference - Building AppSec Teams
SC conference - Building AppSec TeamsDinis Cruz
 
Demystifying DevSecOps
Demystifying DevSecOpsDemystifying DevSecOps
Demystifying DevSecOpsArchana Joshi
 
How to automate your DevSecOps successfully
How to automate your DevSecOps successfullyHow to automate your DevSecOps successfully
How to automate your DevSecOps successfullyManuel Pistner
 
DevSecOps | DevOps Sec
DevSecOps | DevOps SecDevSecOps | DevOps Sec
DevSecOps | DevOps SecRubal Jain
 
Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...
Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...
Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...SecureSoftwareDevOn SecureSoftwareDevOn
 
DevSecOps outline
DevSecOps outlineDevSecOps outline
DevSecOps outlineNickleus Jimenez
 
Integrate Security into DevOps - SecDevOps
Integrate Security into DevOps - SecDevOpsIntegrate Security into DevOps - SecDevOps
Integrate Security into DevOps - SecDevOpsUlf Mattsson
 
AWS live hack: Atlassian + Snyk OSS on AWS
AWS live hack: Atlassian + Snyk OSS on AWSAWS live hack: Atlassian + Snyk OSS on AWS
AWS live hack: Atlassian + Snyk OSS on AWSEric Smalling
 
DevSecOps The Evolution of DevOps
DevSecOps The Evolution of DevOpsDevSecOps The Evolution of DevOps
DevSecOps The Evolution of DevOpsMichael Man
 
Agile Network India | DevSecOps - The What and the Why | Ritesh Shregill
Agile Network India | DevSecOps - The What and the Why | Ritesh ShregillAgile Network India | DevSecOps - The What and the Why | Ritesh Shregill
Agile Network India | DevSecOps - The What and the Why | Ritesh ShregillAgileNetwork
 
IB Fraud
IB FraudIB Fraud
IB FraudMd. Shazzad Hossain CISA, CISM, CRISC, MBA (Fin)
 
My Life, The Final Frontier.
My Life, The Final Frontier.My Life, The Final Frontier.
My Life, The Final Frontier.Hitomi Yamagishi
 

More Related Content

What's hot

SecDevOps 2.0 - Managing Your Robot Army
SecDevOps 2.0 - Managing Your Robot ArmySecDevOps 2.0 - Managing Your Robot Army
SecDevOps 2.0 - Managing Your Robot Armyconjur_inc
 
DevSecOps in Baby Steps
DevSecOps in Baby StepsDevSecOps in Baby Steps
DevSecOps in Baby StepsPriyanka Aash
 
Elizabeth Lawler - Devops, security, and compliance working in unison
Elizabeth Lawler - Devops, security, and compliance working in unisonElizabeth Lawler - Devops, security, and compliance working in unison
Elizabeth Lawler - Devops, security, and compliance working in unisonDevSecCon
 
DevSecOps Beginners Guide : How to secure process in DevOps with OpenSource
DevSecOps Beginners Guide : How to secure process in DevOps with OpenSourceDevSecOps Beginners Guide : How to secure process in DevOps with OpenSource
DevSecOps Beginners Guide : How to secure process in DevOps with OpenSourceDevOps Indonesia
 
Why should developers care about container security?
Why should developers care about container security?Why should developers care about container security?
Why should developers care about container security?Eric Smalling
 
DevSecOps - CrikeyCon 2017
DevSecOps - CrikeyCon 2017DevSecOps - CrikeyCon 2017
DevSecOps - CrikeyCon 2017kieranjacobsen
 
[OWASP Poland Day] Security in developer's life
[OWASP Poland Day] Security in developer's life[OWASP Poland Day] Security in developer's life
[OWASP Poland Day] Security in developer's lifeOWASP
 
SC conference - Building AppSec Teams
SC conference - Building AppSec TeamsSC conference - Building AppSec Teams
SC conference - Building AppSec TeamsDinis Cruz
 
Demystifying DevSecOps
Demystifying DevSecOpsDemystifying DevSecOps
Demystifying DevSecOpsArchana Joshi
 
How to automate your DevSecOps successfully
How to automate your DevSecOps successfullyHow to automate your DevSecOps successfully
How to automate your DevSecOps successfullyManuel Pistner
 
DevSecOps | DevOps Sec
DevSecOps | DevOps SecDevSecOps | DevOps Sec
DevSecOps | DevOps SecRubal Jain
 
Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...
Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...
Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...SecureSoftwareDevOn SecureSoftwareDevOn
 
Integrate Security into DevOps - SecDevOps
Integrate Security into DevOps - SecDevOpsIntegrate Security into DevOps - SecDevOps
Integrate Security into DevOps - SecDevOpsUlf Mattsson
 
AWS live hack: Atlassian + Snyk OSS on AWS
AWS live hack: Atlassian + Snyk OSS on AWSAWS live hack: Atlassian + Snyk OSS on AWS
AWS live hack: Atlassian + Snyk OSS on AWSEric Smalling
 
DevSecOps The Evolution of DevOps
DevSecOps The Evolution of DevOpsDevSecOps The Evolution of DevOps
DevSecOps The Evolution of DevOpsMichael Man
 
Agile Network India | DevSecOps - The What and the Why | Ritesh Shregill
Agile Network India | DevSecOps - The What and the Why | Ritesh ShregillAgile Network India | DevSecOps - The What and the Why | Ritesh Shregill
Agile Network India | DevSecOps - The What and the Why | Ritesh ShregillAgileNetwork
 

What's hot (20)

Benefits of DevSecOps
Benefits of DevSecOpsBenefits of DevSecOps
Benefits of DevSecOps
 
SecDevOps 2.0 - Managing Your Robot Army
SecDevOps 2.0 - Managing Your Robot ArmySecDevOps 2.0 - Managing Your Robot Army
SecDevOps 2.0 - Managing Your Robot Army
 
Introduction to DevSecOps
Introduction to DevSecOpsIntroduction to DevSecOps
Introduction to DevSecOps
 
DevSecOps in Baby Steps
DevSecOps in Baby StepsDevSecOps in Baby Steps
DevSecOps in Baby Steps
 
Elizabeth Lawler - Devops, security, and compliance working in unison
Elizabeth Lawler - Devops, security, and compliance working in unisonElizabeth Lawler - Devops, security, and compliance working in unison
Elizabeth Lawler - Devops, security, and compliance working in unison
 
DevSecOps Beginners Guide : How to secure process in DevOps with OpenSource
DevSecOps Beginners Guide : How to secure process in DevOps with OpenSourceDevSecOps Beginners Guide : How to secure process in DevOps with OpenSource
DevSecOps Beginners Guide : How to secure process in DevOps with OpenSource
 
Implementing DevSecOps
Implementing DevSecOpsImplementing DevSecOps
Implementing DevSecOps
 
Why should developers care about container security?
Why should developers care about container security?Why should developers care about container security?
Why should developers care about container security?
 
DevSecOps - CrikeyCon 2017
DevSecOps - CrikeyCon 2017DevSecOps - CrikeyCon 2017
DevSecOps - CrikeyCon 2017
 
[OWASP Poland Day] Security in developer's life
[OWASP Poland Day] Security in developer's life[OWASP Poland Day] Security in developer's life
[OWASP Poland Day] Security in developer's life
 
SC conference - Building AppSec Teams
SC conference - Building AppSec TeamsSC conference - Building AppSec Teams
SC conference - Building AppSec Teams
 
Demystifying DevSecOps
Demystifying DevSecOpsDemystifying DevSecOps
Demystifying DevSecOps
 
How to automate your DevSecOps successfully
How to automate your DevSecOps successfullyHow to automate your DevSecOps successfully
How to automate your DevSecOps successfully
 
DevSecOps | DevOps Sec
DevSecOps | DevOps SecDevSecOps | DevOps Sec
DevSecOps | DevOps Sec
 
Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...
Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...
Introducing DevSecOps by Madhu Akula - Software Security Bangalore - May 27 2...
 
DevSecOps outline
DevSecOps outlineDevSecOps outline
DevSecOps outline
 
Integrate Security into DevOps - SecDevOps
Integrate Security into DevOps - SecDevOpsIntegrate Security into DevOps - SecDevOps
Integrate Security into DevOps - SecDevOps
 
AWS live hack: Atlassian + Snyk OSS on AWS
AWS live hack: Atlassian + Snyk OSS on AWSAWS live hack: Atlassian + Snyk OSS on AWS
AWS live hack: Atlassian + Snyk OSS on AWS
 
DevSecOps The Evolution of DevOps
DevSecOps The Evolution of DevOpsDevSecOps The Evolution of DevOps
DevSecOps The Evolution of DevOps
 
Agile Network India | DevSecOps - The What and the Why | Ritesh Shregill
Agile Network India | DevSecOps - The What and the Why | Ritesh ShregillAgile Network India | DevSecOps - The What and the Why | Ritesh Shregill
Agile Network India | DevSecOps - The What and the Why | Ritesh Shregill
 

Viewers also liked

My Life, The Final Frontier.
My Life, The Final Frontier.My Life, The Final Frontier.
My Life, The Final Frontier.Hitomi Yamagishi
 
профстандарты амплуа
профстандарты амплуапрофстандарты амплуа
профстандарты амплуаHR&Trainings EXPO
 
Creando tu proximo paso (de carrera profesional)
Creando tu proximo paso (de carrera profesional)Creando tu proximo paso (de carrera profesional)
Creando tu proximo paso (de carrera profesional)Ury Sarabia
 
Salary Negotiation - Frightening Statistics for Women Executives
Salary Negotiation - Frightening Statistics for Women ExecutivesSalary Negotiation - Frightening Statistics for Women Executives
Salary Negotiation - Frightening Statistics for Women ExecutivesCatherine Cunningham
 
Presentación de estético lúdico nueva..
Presentación de estético lúdico nueva..Presentación de estético lúdico nueva..
Presentación de estético lúdico nueva..dinora paredes
 
Lógica matemática e inglés
Lógica matemática e inglésLógica matemática e inglés
Lógica matemática e inglésLizeth Alba
 
Trust Stranger or Boss
Trust Stranger or BossTrust Stranger or Boss
Trust Stranger or BossO.C. Tanner
 
Persoonlijke pitch voor mijn droombaan!
Persoonlijke pitch voor mijn droombaan!Persoonlijke pitch voor mijn droombaan!
Persoonlijke pitch voor mijn droombaan!Elly Gerichhausen
 
Những cải tiến Toyota Vios 2017 sắp đến so với Toyota Vios 2016 - toyotatanta...
Những cải tiến Toyota Vios 2017 sắp đến so với Toyota Vios 2016 - toyotatanta...Những cải tiến Toyota Vios 2017 sắp đến so với Toyota Vios 2016 - toyotatanta...
Những cải tiến Toyota Vios 2017 sắp đến so với Toyota Vios 2016 - toyotatanta...Toyota Hùng Vương
 
5 is different than 25
5 is different than 255 is different than 25
5 is different than 25O.C. Tanner
 
Przywództwo przyszłości
Przywództwo przyszłości Przywództwo przyszłości
Przywództwo przyszłościPwC Polska
 
De Toekomst van Werk & Generatie Y; YACHT Trainees Nieuwjaarsbijeenkomst 2016
De Toekomst van Werk & Generatie Y; YACHT Trainees Nieuwjaarsbijeenkomst 2016De Toekomst van Werk & Generatie Y; YACHT Trainees Nieuwjaarsbijeenkomst 2016
De Toekomst van Werk & Generatie Y; YACHT Trainees Nieuwjaarsbijeenkomst 2016Jochem van Laren
 
Glow adventure by boost
Glow adventure by boostGlow adventure by boost
Glow adventure by boostAïcha DABBAB
 
Como os salários se comportarão em 2016?
Como os salários se comportarão em 2016?Como os salários se comportarão em 2016?
Como os salários se comportarão em 2016?Robert Half Brasil
 
Employee recognition-around-the-globe
Employee recognition-around-the-globeEmployee recognition-around-the-globe
Employee recognition-around-the-globeO.C. Tanner
 

Viewers also liked (20)

IB Fraud
IB FraudIB Fraud
IB Fraud
 
My Life, The Final Frontier.
My Life, The Final Frontier.My Life, The Final Frontier.
My Life, The Final Frontier.
 
профстандарты амплуа
профстандарты амплуапрофстандарты амплуа
профстандарты амплуа
 
Creando tu proximo paso (de carrera profesional)
Creando tu proximo paso (de carrera profesional)Creando tu proximo paso (de carrera profesional)
Creando tu proximo paso (de carrera profesional)
 
Concevoir son plan de communication
Concevoir son plan de communicationConcevoir son plan de communication
Concevoir son plan de communication
 
Salary Negotiation - Frightening Statistics for Women Executives
Salary Negotiation - Frightening Statistics for Women ExecutivesSalary Negotiation - Frightening Statistics for Women Executives
Salary Negotiation - Frightening Statistics for Women Executives
 
Building blocks
Building blocksBuilding blocks
Building blocks
 
Presentación de estético lúdico nueva..
Presentación de estético lúdico nueva..Presentación de estético lúdico nueva..
Presentación de estético lúdico nueva..
 
Lógica matemática e inglés
Lógica matemática e inglésLógica matemática e inglés
Lógica matemática e inglés
 
Trust Stranger or Boss
Trust Stranger or BossTrust Stranger or Boss
Trust Stranger or Boss
 
Persoonlijke pitch voor mijn droombaan!
Persoonlijke pitch voor mijn droombaan!Persoonlijke pitch voor mijn droombaan!
Persoonlijke pitch voor mijn droombaan!
 
Những cải tiến Toyota Vios 2017 sắp đến so với Toyota Vios 2016 - toyotatanta...
Những cải tiến Toyota Vios 2017 sắp đến so với Toyota Vios 2016 - toyotatanta...Những cải tiến Toyota Vios 2017 sắp đến so với Toyota Vios 2016 - toyotatanta...
Những cải tiến Toyota Vios 2017 sắp đến so với Toyota Vios 2016 - toyotatanta...
 
5 is different than 25
5 is different than 255 is different than 25
5 is different than 25
 
Le cv
Le cvLe cv
Le cv
 
Przywództwo przyszłości
Przywództwo przyszłości Przywództwo przyszłości
Przywództwo przyszłości
 
Profil ilmy (Intellectual Community)
Profil ilmy (Intellectual Community)Profil ilmy (Intellectual Community)
Profil ilmy (Intellectual Community)
 
De Toekomst van Werk & Generatie Y; YACHT Trainees Nieuwjaarsbijeenkomst 2016
De Toekomst van Werk & Generatie Y; YACHT Trainees Nieuwjaarsbijeenkomst 2016De Toekomst van Werk & Generatie Y; YACHT Trainees Nieuwjaarsbijeenkomst 2016
De Toekomst van Werk & Generatie Y; YACHT Trainees Nieuwjaarsbijeenkomst 2016
 
Glow adventure by boost
Glow adventure by boostGlow adventure by boost
Glow adventure by boost
 
Como os salários se comportarão em 2016?
Como os salários se comportarão em 2016?Como os salários se comportarão em 2016?
Como os salários se comportarão em 2016?
 
Employee recognition-around-the-globe
Employee recognition-around-the-globeEmployee recognition-around-the-globe
Employee recognition-around-the-globe
 

Similar to wannabe Cyberpunk; “I don’t know what I’m supposed to do.”

Top Cybersecurity Certs
Top Cybersecurity CertsTop Cybersecurity Certs
Top Cybersecurity CertsRiya Kapoor
 
What Cybersecurity Certifications Make You The Most Money Today.pptx
What Cybersecurity Certifications Make You The Most Money Today.pptxWhat Cybersecurity Certifications Make You The Most Money Today.pptx
What Cybersecurity Certifications Make You The Most Money Today.pptxinfosec train
 
How to Pass the CISSP Exam For the First Time
How to Pass the CISSP Exam For the First TimeHow to Pass the CISSP Exam For the First Time
How to Pass the CISSP Exam For the First TimeMercury Solutions Limited
 
Charting a Career in Information Security - August 2020
Charting a Career in Information Security - August 2020Charting a Career in Information Security - August 2020
Charting a Career in Information Security - August 2020JayTymchuk
 
CISSP Vs. CISA Which is better for you.pptx
CISSP Vs. CISA Which is better for you.pptxCISSP Vs. CISA Which is better for you.pptx
CISSP Vs. CISA Which is better for you.pptxInfosectrain3
 
How to become a SOC Analyst and build a dream career with it.pptx
How to become a SOC Analyst and build a dream career with it.pptxHow to become a SOC Analyst and build a dream career with it.pptx
How to become a SOC Analyst and build a dream career with it.pptxInfosectrain3
 
How to become a SOC Analyst and build a dream career with it.pptx
How to become a SOC Analyst and build a dream career with it.pptxHow to become a SOC Analyst and build a dream career with it.pptx
How to become a SOC Analyst and build a dream career with it.pptxinfosec train
 
CISSO Certification| CISSO Training | CISSO
CISSO Certification| CISSO Training | CISSOCISSO Certification| CISSO Training | CISSO
CISSO Certification| CISSO Training | CISSOSagarNegi10
 
CISSO Certification | CISSO Training | CISSO
CISSO Certification | CISSO Training | CISSOCISSO Certification | CISSO Training | CISSO
CISSO Certification | CISSO Training | CISSOSagarNegi10
 
350-701 Certification Exam Dumps Pdf Your Path to Success.pdf
350-701 Certification Exam Dumps Pdf Your Path to Success.pdf350-701 Certification Exam Dumps Pdf Your Path to Success.pdf
350-701 Certification Exam Dumps Pdf Your Path to Success.pdfAliza Oscar
 
Certifications on Security - IS AUDIT
Certifications on Security - IS AUDITCertifications on Security - IS AUDIT
Certifications on Security - IS AUDITShahzeb Pirzada
 
Best Cyber Security Training Certification | ACS Networks and Technologies Pv...
Best Cyber Security Training Certification | ACS Networks and Technologies Pv...Best Cyber Security Training Certification | ACS Networks and Technologies Pv...
Best Cyber Security Training Certification | ACS Networks and Technologies Pv...ACS Networks and Technologies Pvt. Ltd.
 
Skills For Career In Security
Skills For Career In SecuritySkills For Career In Security
Skills For Career In SecurityPrasanna V
 
Advanced Ethical hacking summer Internship in Delhi
Advanced Ethical hacking summer Internship in DelhiAdvanced Ethical hacking summer Internship in Delhi
Advanced Ethical hacking summer Internship in DelhiCRAW CYBER SECURITY PVT LTD
 
William Diederich - Security Certifications: Are They Worth the Investment? A...
William Diederich - Security Certifications: Are They Worth the Investment? A...William Diederich - Security Certifications: Are They Worth the Investment? A...
William Diederich - Security Certifications: Are They Worth the Investment? A...centralohioissa
 
How to prepare for Infosec domain's best certifications?
How to prepare for Infosec domain's best certifications?How to prepare for Infosec domain's best certifications?
How to prepare for Infosec domain's best certifications?InfosecTrain
 

Similar to wannabe Cyberpunk; “I don’t know what I’m supposed to do.” (20)

Top Cybersecurity Certs
Top Cybersecurity CertsTop Cybersecurity Certs
Top Cybersecurity Certs
 
What Cybersecurity Certifications Make You The Most Money Today.pptx
What Cybersecurity Certifications Make You The Most Money Today.pptxWhat Cybersecurity Certifications Make You The Most Money Today.pptx
What Cybersecurity Certifications Make You The Most Money Today.pptx
 
How to Pass the CISSP Exam For the First Time
How to Pass the CISSP Exam For the First TimeHow to Pass the CISSP Exam For the First Time
How to Pass the CISSP Exam For the First Time
 
Charting a Career in Information Security - August 2020
Charting a Career in Information Security - August 2020Charting a Career in Information Security - August 2020
Charting a Career in Information Security - August 2020
 
CISSP-WEB
CISSP-WEBCISSP-WEB
CISSP-WEB
 
Ceh vs Cissp difficulty, Salary, Job!
Ceh vs Cissp difficulty, Salary, Job!Ceh vs Cissp difficulty, Salary, Job!
Ceh vs Cissp difficulty, Salary, Job!
 
CEH Vs CISSP: Which one is better?
CEH Vs CISSP: Which one is better?CEH Vs CISSP: Which one is better?
CEH Vs CISSP: Which one is better?
 
CISSP Vs. CISA Which is better for you.pptx
CISSP Vs. CISA Which is better for you.pptxCISSP Vs. CISA Which is better for you.pptx
CISSP Vs. CISA Which is better for you.pptx
 
How to become a SOC Analyst and build a dream career with it.pptx
How to become a SOC Analyst and build a dream career with it.pptxHow to become a SOC Analyst and build a dream career with it.pptx
How to become a SOC Analyst and build a dream career with it.pptx
 
How to become a SOC Analyst and build a dream career with it.pptx
How to become a SOC Analyst and build a dream career with it.pptxHow to become a SOC Analyst and build a dream career with it.pptx
How to become a SOC Analyst and build a dream career with it.pptx
 
cissp.pdf
cissp.pdfcissp.pdf
cissp.pdf
 
CISSO Certification| CISSO Training | CISSO
CISSO Certification| CISSO Training | CISSOCISSO Certification| CISSO Training | CISSO
CISSO Certification| CISSO Training | CISSO
 
CISSO Certification | CISSO Training | CISSO
CISSO Certification | CISSO Training | CISSOCISSO Certification | CISSO Training | CISSO
CISSO Certification | CISSO Training | CISSO
 
350-701 Certification Exam Dumps Pdf Your Path to Success.pdf
350-701 Certification Exam Dumps Pdf Your Path to Success.pdf350-701 Certification Exam Dumps Pdf Your Path to Success.pdf
350-701 Certification Exam Dumps Pdf Your Path to Success.pdf
 
Certifications on Security - IS AUDIT
Certifications on Security - IS AUDITCertifications on Security - IS AUDIT
Certifications on Security - IS AUDIT
 
Best Cyber Security Training Certification | ACS Networks and Technologies Pv...
Best Cyber Security Training Certification | ACS Networks and Technologies Pv...Best Cyber Security Training Certification | ACS Networks and Technologies Pv...
Best Cyber Security Training Certification | ACS Networks and Technologies Pv...
 
Skills For Career In Security
Skills For Career In SecuritySkills For Career In Security
Skills For Career In Security
 
Advanced Ethical hacking summer Internship in Delhi
Advanced Ethical hacking summer Internship in DelhiAdvanced Ethical hacking summer Internship in Delhi
Advanced Ethical hacking summer Internship in Delhi
 
William Diederich - Security Certifications: Are They Worth the Investment? A...
William Diederich - Security Certifications: Are They Worth the Investment? A...William Diederich - Security Certifications: Are They Worth the Investment? A...
William Diederich - Security Certifications: Are They Worth the Investment? A...
 
How to prepare for Infosec domain's best certifications?
How to prepare for Infosec domain's best certifications?How to prepare for Infosec domain's best certifications?
How to prepare for Infosec domain's best certifications?
 

Recently uploaded

Operating system. short answes and Interview questions .pdf
Operating system. short answes and Interview questions .pdfOperating system. short answes and Interview questions .pdf
Operating system. short answes and Interview questions .pdfharikrishnahari6276
 
Transferable Skills - Your Roadmap - Part 1 and 2 - Dirk Spencer Senior Recru...
Transferable Skills - Your Roadmap - Part 1 and 2 - Dirk Spencer Senior Recru...Transferable Skills - Your Roadmap - Part 1 and 2 - Dirk Spencer Senior Recru...
Transferable Skills - Your Roadmap - Part 1 and 2 - Dirk Spencer Senior Recru...Dirk Spencer Corporate Recruiter LION
 
134. Reviewer Certificate in Computer Science
134. Reviewer Certificate in Computer Science134. Reviewer Certificate in Computer Science
134. Reviewer Certificate in Computer ScienceManu Mitra
 
Biography and career history of Chad Henson.pdf
Biography and career history of Chad Henson.pdfBiography and career history of Chad Henson.pdf
Biography and career history of Chad Henson.pdfChad Henson
 
129. Reviewer Certificate in BioNature [2024]
129. Reviewer Certificate in BioNature [2024]129. Reviewer Certificate in BioNature [2024]
129. Reviewer Certificate in BioNature [2024]Manu Mitra
 
0524.THOMASGIRARD_CURRICULUMVITAE-01.pdf
0524.THOMASGIRARD_CURRICULUMVITAE-01.pdf0524.THOMASGIRARD_CURRICULUMVITAE-01.pdf
0524.THOMASGIRARD_CURRICULUMVITAE-01.pdfThomas GIRARD BDes
 
D.El.Ed. College List -Session 2024-26.pdf
D.El.Ed. College List -Session 2024-26.pdfD.El.Ed. College List -Session 2024-26.pdf
D.El.Ed. College List -Session 2024-26.pdfbipedoy339
 
Dr. Nazrul Islam, Northern University Bangladesh - CV (29.5.2024).pdf
Dr. Nazrul Islam, Northern University Bangladesh - CV (29.5.2024).pdfDr. Nazrul Islam, Northern University Bangladesh - CV (29.5.2024).pdf
Dr. Nazrul Islam, Northern University Bangladesh - CV (29.5.2024).pdfDr. Nazrul Islam
 
135. Reviewer Certificate in Journal of Engineering
135. Reviewer Certificate in Journal of Engineering135. Reviewer Certificate in Journal of Engineering
135. Reviewer Certificate in Journal of EngineeringManu Mitra
 
Day care leadership document it helps to a person who needs caring children
Day care leadership document it helps to a person who needs caring childrenDay care leadership document it helps to a person who needs caring children
Day care leadership document it helps to a person who needs caring childrenMeleseWolde3
 
欧洲杯投注网站-欧洲杯投注网站推荐-欧洲杯投注网站| 立即访问【ac123.net】
欧洲杯投注网站-欧洲杯投注网站推荐-欧洲杯投注网站| 立即访问【ac123.net】欧洲杯投注网站-欧洲杯投注网站推荐-欧洲杯投注网站| 立即访问【ac123.net】
欧洲杯投注网站-欧洲杯投注网站推荐-欧洲杯投注网站| 立即访问【ac123.net】foismail170
 
Luke Royak's Personal Brand Exploration!
Luke Royak's Personal Brand Exploration!Luke Royak's Personal Brand Exploration!
Luke Royak's Personal Brand Exploration!LukeRoyak
 
太阳城娱乐-太阳城娱乐推荐-太阳城娱乐官方网站| 立即访问【ac123.net】
太阳城娱乐-太阳城娱乐推荐-太阳城娱乐官方网站| 立即访问【ac123.net】太阳城娱乐-太阳城娱乐推荐-太阳城娱乐官方网站| 立即访问【ac123.net】
太阳城娱乐-太阳城娱乐推荐-太阳城娱乐官方网站| 立即访问【ac123.net】foismail170
 
Widal Agglutination Test: A rapid serological diagnosis of typhoid fever
Widal Agglutination Test: A rapid serological diagnosis of typhoid feverWidal Agglutination Test: A rapid serological diagnosis of typhoid fever
Widal Agglutination Test: A rapid serological diagnosis of typhoid fevertaexnic
 
132. Acta Scientific Pharmaceutical Sciences
132. Acta Scientific Pharmaceutical Sciences132. Acta Scientific Pharmaceutical Sciences
132. Acta Scientific Pharmaceutical SciencesManu Mitra
 
皇冠体育- 皇冠体育官方网站- CROWN SPORTS| 立即访问【ac123.net】
皇冠体育- 皇冠体育官方网站- CROWN SPORTS| 立即访问【ac123.net】皇冠体育- 皇冠体育官方网站- CROWN SPORTS| 立即访问【ac123.net】
皇冠体育- 皇冠体育官方网站- CROWN SPORTS| 立即访问【ac123.net】larisashrestha558
 
欧洲杯买球平台-欧洲杯买球平台推荐-欧洲杯买球平台| 立即访问【ac123.net】
欧洲杯买球平台-欧洲杯买球平台推荐-欧洲杯买球平台| 立即访问【ac123.net】欧洲杯买球平台-欧洲杯买球平台推荐-欧洲杯买球平台| 立即访问【ac123.net】
欧洲杯买球平台-欧洲杯买球平台推荐-欧洲杯买球平台| 立即访问【ac123.net】foismail170
 
0524.priorspeakingengagementslist-01.pdf
0524.priorspeakingengagementslist-01.pdf0524.priorspeakingengagementslist-01.pdf
0524.priorspeakingengagementslist-01.pdfThomas GIRARD BDes
 
DIGITAL MARKETING COURSE IN CHENNAI.pptx
DIGITAL MARKETING COURSE IN CHENNAI.pptxDIGITAL MARKETING COURSE IN CHENNAI.pptx
DIGITAL MARKETING COURSE IN CHENNAI.pptxFarzanaRbcomcs
 
欧洲杯投注app-欧洲杯投注app推荐-欧洲杯投注app| 立即访问【ac123.net】
欧洲杯投注app-欧洲杯投注app推荐-欧洲杯投注app| 立即访问【ac123.net】欧洲杯投注app-欧洲杯投注app推荐-欧洲杯投注app| 立即访问【ac123.net】
欧洲杯投注app-欧洲杯投注app推荐-欧洲杯投注app| 立即访问【ac123.net】foismail170
 

Recently uploaded (20)

Operating system. short answes and Interview questions .pdf
Operating system. short answes and Interview questions .pdfOperating system. short answes and Interview questions .pdf
Operating system. short answes and Interview questions .pdf
 
Transferable Skills - Your Roadmap - Part 1 and 2 - Dirk Spencer Senior Recru...
Transferable Skills - Your Roadmap - Part 1 and 2 - Dirk Spencer Senior Recru...Transferable Skills - Your Roadmap - Part 1 and 2 - Dirk Spencer Senior Recru...
Transferable Skills - Your Roadmap - Part 1 and 2 - Dirk Spencer Senior Recru...
 
134. Reviewer Certificate in Computer Science
134. Reviewer Certificate in Computer Science134. Reviewer Certificate in Computer Science
134. Reviewer Certificate in Computer Science
 
Biography and career history of Chad Henson.pdf
Biography and career history of Chad Henson.pdfBiography and career history of Chad Henson.pdf
Biography and career history of Chad Henson.pdf
 
129. Reviewer Certificate in BioNature [2024]
129. Reviewer Certificate in BioNature [2024]129. Reviewer Certificate in BioNature [2024]
129. Reviewer Certificate in BioNature [2024]
 
0524.THOMASGIRARD_CURRICULUMVITAE-01.pdf
0524.THOMASGIRARD_CURRICULUMVITAE-01.pdf0524.THOMASGIRARD_CURRICULUMVITAE-01.pdf
0524.THOMASGIRARD_CURRICULUMVITAE-01.pdf
 
D.El.Ed. College List -Session 2024-26.pdf
D.El.Ed. College List -Session 2024-26.pdfD.El.Ed. College List -Session 2024-26.pdf
D.El.Ed. College List -Session 2024-26.pdf
 
Dr. Nazrul Islam, Northern University Bangladesh - CV (29.5.2024).pdf
Dr. Nazrul Islam, Northern University Bangladesh - CV (29.5.2024).pdfDr. Nazrul Islam, Northern University Bangladesh - CV (29.5.2024).pdf
Dr. Nazrul Islam, Northern University Bangladesh - CV (29.5.2024).pdf
 
135. Reviewer Certificate in Journal of Engineering
135. Reviewer Certificate in Journal of Engineering135. Reviewer Certificate in Journal of Engineering
135. Reviewer Certificate in Journal of Engineering
 
Day care leadership document it helps to a person who needs caring children
Day care leadership document it helps to a person who needs caring childrenDay care leadership document it helps to a person who needs caring children
Day care leadership document it helps to a person who needs caring children
 
欧洲杯投注网站-欧洲杯投注网站推荐-欧洲杯投注网站| 立即访问【ac123.net】
欧洲杯投注网站-欧洲杯投注网站推荐-欧洲杯投注网站| 立即访问【ac123.net】欧洲杯投注网站-欧洲杯投注网站推荐-欧洲杯投注网站| 立即访问【ac123.net】
欧洲杯投注网站-欧洲杯投注网站推荐-欧洲杯投注网站| 立即访问【ac123.net】
 
Luke Royak's Personal Brand Exploration!
Luke Royak's Personal Brand Exploration!Luke Royak's Personal Brand Exploration!
Luke Royak's Personal Brand Exploration!
 
太阳城娱乐-太阳城娱乐推荐-太阳城娱乐官方网站| 立即访问【ac123.net】
太阳城娱乐-太阳城娱乐推荐-太阳城娱乐官方网站| 立即访问【ac123.net】太阳城娱乐-太阳城娱乐推荐-太阳城娱乐官方网站| 立即访问【ac123.net】
太阳城娱乐-太阳城娱乐推荐-太阳城娱乐官方网站| 立即访问【ac123.net】
 
Widal Agglutination Test: A rapid serological diagnosis of typhoid fever
Widal Agglutination Test: A rapid serological diagnosis of typhoid feverWidal Agglutination Test: A rapid serological diagnosis of typhoid fever
Widal Agglutination Test: A rapid serological diagnosis of typhoid fever
 
132. Acta Scientific Pharmaceutical Sciences
132. Acta Scientific Pharmaceutical Sciences132. Acta Scientific Pharmaceutical Sciences
132. Acta Scientific Pharmaceutical Sciences
 
皇冠体育- 皇冠体育官方网站- CROWN SPORTS| 立即访问【ac123.net】
皇冠体育- 皇冠体育官方网站- CROWN SPORTS| 立即访问【ac123.net】皇冠体育- 皇冠体育官方网站- CROWN SPORTS| 立即访问【ac123.net】
皇冠体育- 皇冠体育官方网站- CROWN SPORTS| 立即访问【ac123.net】
 
欧洲杯买球平台-欧洲杯买球平台推荐-欧洲杯买球平台| 立即访问【ac123.net】
欧洲杯买球平台-欧洲杯买球平台推荐-欧洲杯买球平台| 立即访问【ac123.net】欧洲杯买球平台-欧洲杯买球平台推荐-欧洲杯买球平台| 立即访问【ac123.net】
欧洲杯买球平台-欧洲杯买球平台推荐-欧洲杯买球平台| 立即访问【ac123.net】
 
0524.priorspeakingengagementslist-01.pdf
0524.priorspeakingengagementslist-01.pdf0524.priorspeakingengagementslist-01.pdf
0524.priorspeakingengagementslist-01.pdf
 
DIGITAL MARKETING COURSE IN CHENNAI.pptx
DIGITAL MARKETING COURSE IN CHENNAI.pptxDIGITAL MARKETING COURSE IN CHENNAI.pptx
DIGITAL MARKETING COURSE IN CHENNAI.pptx
 
欧洲杯投注app-欧洲杯投注app推荐-欧洲杯投注app| 立即访问【ac123.net】
欧洲杯投注app-欧洲杯投注app推荐-欧洲杯投注app| 立即访问【ac123.net】欧洲杯投注app-欧洲杯投注app推荐-欧洲杯投注app| 立即访问【ac123.net】
欧洲杯投注app-欧洲杯投注app推荐-欧洲杯投注app| 立即访问【ac123.net】
 

wannabe Cyberpunk; “I don’t know what I’m supposed to do.”

  • 1. Wannabe Cyberpunk; “I don’t know what I’m supposed to do.” Moshiul Islam , CISSP, CISA, CFE Founder, Leader & Chair- OWASP Bangladesh Chapter 1
  • 2. Information Security VS Cyber Security Source: https://www.novainfosec.com/2014/05/05/cyber-security-versus-information-security/ 2
  • 3. Terms  Hacker  Cracker  Phreaker  Script kiddies  Security Pro 3
  • 4. Script Kiddie  In programming and hacking culture, a script kiddie or skiddie (other names include skid or script bunny) is an unskilled individual who uses scripts or programs developed by others to attack computer systems and networks and deface websites.  Taken from Script kiddie – Wikipedia 4
  • 6. Is it that Challenging? 6
  • 8. Is it that easy??? 8
  • 9. How much of the Internet is accessible by Google? 9
  • 10. Pills to become security Pro 10
  • 11. Career options 11 Professional Academic WebApp Security Pro InfoSec Network Security Pro Cryptanalyst Reverse Engineer/Malware Analyst Security Manager Cloud Security Pro Mobile & IOT Security Pro Forensic Investigator Code Reviewer Security Tester/Pen Tester PHD Independent Researcher
  • 12. InfoSec Job Title & Hierarchy CISO Security Architect/Director Security Manager/ Engineer Team Leader Security Officer/Analyst 12
  • 13. 13
  • 16. Where do I start?  Tuts4You.com Tutorials  https://blog.malwarebytes.com/security-world/2012/09/so-you-want-to-be-a-malware-analyst/  https://digital-forensics.sans.org/blog/2010/11/12/get-started-with-malware-analysis/ 16
  • 17. Cryptanalyst  A Cryptographer develops algorithms, ciphers and security systems to encrypt sensitive information.  A Cryptanalyst analyzes and decrypts any type of hidden information (e.g. encrypted data, cipher texts, telecommunications protocols) in cryptographic security systems.  You are the code maker and the code breaker, the professional who ensures that private data regarding finance, national security and other important spheres are hidden from marauding cyber-terrorists.  http://www.ed.ac.uk/files/imports/fileManager/Careers_in_Cryptology.pdf 17
  • 18. Over 100+ certification in Cyber Security  Certifications only make up maybe 10% of what security professionals should be focusing on in managing their career  No certification certifies you as BEST security Pro  It certifies having minimum level of industry accepted knowledge  Always choose vendor neutral certification 18
  • 19. Skills VS Certification  Hackers have curiosity, perseverance, focus, and creativity.  Certification is not one of them!!!  Security Pro should have …………. 19
  • 20. Toward a Stable Career Your career rests on 4 legs 1. Education 2. Skills & Experience 3. Certifications 4. “Who you know” 20
  • 21. Job Board Search Results Certification SimplyHired Indeed LinkedIn Jobs TechCareers Total CISSP 10,526 11,617 7,632 15,212 44,987 OSCP 451 500 599 5932 7482 CISM 3,286 3,585 2,337 10,629 19,837 GSEC 1,317 1,477 954 128 3,876 Security+ 3,038 3,396 1,275 1,431 9,140 21
  • 22. CompTIA Security+ Facts & Figures Certification Name CompTIA Security+ Prerequisites & Required Courses None. CompTIA recommends at least two years of experience in IT administration (with a security focus) and the Network+ credential before taking the Security+ exam. Number of Exams One: SYO-401 Cost of Exam USD 311 (discounts may apply) URL https://certification.comptia.org/certifications/security Self-Study Materials Exam objectives, sample exam questions, the CertMaster online training tool, training kits, computer-based training and a comprehensive study guide are available at CompTIA.org. 22
  • 23. OSCP Facts & Figures Certification Name Offensive Security Certified Professional (OSCP) Prerequisites & Required Courses Penetration Testing with Kali Linux training course Number of Exams 1 twenty-four (24) hour certification exam Cost of Exam $ USD 800 (Online training +1 month Lab+ Exam) URL https://www.offensive-security.com/information-security-training/penetration-testing- training-kali-linux/ Self-Study Materials Provided upon registration 23
  • 24. CISM Facts & Figure Certification Name Certified Information Security Manager (CISM) Prerequisites & Required Courses 1.To obtain the CISM credential, candidates must do the following: Pass the CISM exam. 2.Meet the experience criteria 3.Agree to the CISM Continuing Education Policy. Cost of Exam Online early registration: member $450, nonmember $63 Mailed/faxed early registration fee: member $525, nonmember $710 Online final registration deadline fee: member $500, nonmember $685 Mailed/faxed final registration deadline fee: member $575, nonmember $760 URL http://www.isaca.org/Certification/CISM-Certified-Information-Security-Manager/Pages/default.aspx Self-Study Materials Training and study materials in various languages, information on Job Practice Areas, primary references, publications, articles, the ISACA Journal, review courses, exam prep community, terminology lists, a glossary and more are available at ISACA.org. 24
  • 25. CISSP Facts & Figures Certification Name Certified Information Systems Security Professional (CISSP) Optional CISSP concentrations: • CISSP Architecture (CISSP-ISSAP) • CISSP Engineering (CISSP-ISSEP) • CISSP Management (CISSP-ISSMP) Prerequisites & Required Courses At least five years of paid, full-time experience in at least two of the eight (ISC)2 domains or four years of paid, full-time experience in at least two of the eight (ISC)2 domains and a college degree. Number of Exams One for CISSP (250 multiple-choice and advanced innovative questions, six hours) One for each concentration area Cost of Exam CISSP is USD 599; each CISSP concentration is USD 399 URL https://www.isc2.org/CISSP/Default.aspx Self-Study Materials See the CISSP Exam Preparation web page. A variety of training materials are available, including instructor-led, live online, on-demand and private training. An exam outline is available for candidate review, as well as study guides, a study app, interactive flashcards and practice tests. 25