Sunday, November 29, 2009

5 Reasons to Hire Credentialed Professionals

Here in Malaysia clients have lot of concerns about security, I am sure this is a common concerns in most parts of the world and with the IT playing a major role in all aspects of life.. the information security role will be as important as others.. Here is a nice article I found in one of my mails. 

The need for heightened information security measures has never been greater. To date, more than 60,000 certified professionals and their employers have learned to protect the enterprise and outmaneuver cyber attacks the (ISC)² way. There are 5 major reasons why an organization should employ credentialed professionals when recruiting information security personnel.

• Experience: Credentialed professionals have already gained years of experience in the industry and have met a prescribed educational standard.

• Continuing Professional Education (CPE): This ensures candidates must continue their education and prepare to handle the onslaught of ever-changing information security challenges with new and innovative alternatives to the status quo.

• Certification Mandate: More and more organizations - public and private, such as the U.S. Department of Defense and financial institutions, are now requiring certification for their information security personnel. If you are a service provider or subcontractor you will need to employ certified staff as well.  Having employees with superior credentials puts your organization in a position of strength and presents a positive light.

• Global Recognition: Hiring managers are literally bombarded with resumes from around the world. However internationally recognized qualifications, such as CISSP® and SSCP® as opposed to nationally recognized qualifications, automatically raise the bar allowing you to judge the credentials of each candidate more equitably.

• Common Language: Vendor-specific credentials can be very limiting when new technologies are introduced. Conversely, (ISC)² credentials are universal circumventing all ambiguity with industry-accepted knowledge as well as current trends.

The CISSP certification is held by information security professionals who develop policies, standards, and procedures as well as manage the implementation across the enterprise. A major point that sets the CISSP apart from other security certifications is the breadth of knowledge and the experience necessary to pass the exam. A CISSP candidate cannot specialize in just one domain; they must know and understand the full spectrum of the (ISC)² CISSP CBK® to become certified. What's more, in order to maintain their certification, CISSP's are required to earn Continuing Professional Education (CPE) credits every year.

About (ISC)²

The International Information Systems Security Certification Consortium, Inc. [(ISC)²®] (pronounced as "I-S-C-squared") is the globally recognized Gold Standard for educating and certifying information security professionals. Celebrating its 20th anniversary, (ISC)² issues CISSP®and related concentrations CISSP-ISSAP® /ISSEP® /ISSMP®, CSSLPCM, CAP®, and SSCP®credentials; offers a portfolio of award winning education products and services based upon (ISC)²'s CBK®, a compendium of information security topics, and is responsible for the (ISC)² Global Information Security Workforce Study.

More information is available at

No comments: