(ISC)2, CSA unveil new cloud security cert

Computerworld Hong Kong staff
Computerworld Hong Kong

(ISC)2 and the Cloud Security Alliance (CSA) have announced the new Certified Cloud Security Professional (CCSP) certification.

Jointly developed by (ISC)2 and CSA, the CCSP certifies cloud security professions' the skills required to secure the cloud. These include their knowledge, skills and abilities to audit, assess and secure cloud infrastructures. It also certifies one's skills in establishing an international standard for professional-level knowledge in the design, implementation and management of cloud environments.

CCSP complements and builds upon existing certifications and education programs: 1) (ISC)2's Certified Information Systems Security Professional (CISSP); and 2) CSA's Certificate of Cloud Security Knowledge (CCSK).

Minimum 5 years of IT experience

CSA's CCSK provides an indicator of baseline cloud security knowledge, appropriate for most IT positions. The CCSP credential builds upon many of the areas covered by CCSK in order to provide deeper knowledge derived from hands-on information security and cloud computing experience. It validates practical know-how skills applicable to those professionals whose day-to-day responsibilities involve cloud security architecture, design, operations and service orchestration. The CCSP credential is intended for professionals who are heavily involved in cloud security via roles that are accountable for protecting enterprise architectures.

To attain CCSP, applicants must have a minimum of five years of experience in IT, of which three must be in information security and one year in cloud computing. All candidates must be able to demonstrate capabilities in each of the six CBK (common body of knowledge) domains: 1) architectural concepts and design requirements; 2) cloud data security; 3) cloud platform and infrastructure security; 4) cloud application security; 5) operations; and 6) legal and compliance.

"It's essential to have qualified IT professionals who understand how cloud services need to be securely implemented and managed within their organizations," says David Shearer, CISSP, PMP, executive director, (ISC)2. "We are pleased to collaborate with the distinguished Cloud Security Alliance to build this unique credential that combines the collective experience and research of both organizations and establishes a new benchmark for advanced cloud security knowledge and competence."

Cloud becomes top infosec area

According to the 2015 (ISC)2 Global Information Security Workforce Study, 73% of nearly 14,000 respondents believe that cloud computing will require information security professionals to develop new skills. Cloud computing was also identified as the top area of information security with growing demand for education and training within the next three years.

"Many enterprises have told us that cloud computing is becoming their primary IT system," said Jim Reavis, CEO, Cloud Security Alliance. "An effective cloud security strategy and architecture adds several nuances to traditional security best practices; which is why it's critical to accelerate efforts to address the cloud security skills gap. CCSP helps to set the highest standard for cloud security expertise. The program we have developed with (ISC)2 creates strong incentives for information security professionals to obtain both the CCSK and CCSP, which will create a workforce of experts who possess a mastery of the broadest cloud security body of knowledge."

The CCSP exam will be available at PearsonVUE testing centers worldwide beginning July 21, 2015. Candidates can find more information about CCSP, download the exam outline, register for the exam and/or training at https://www.isc2.org/ccsp.


5G and data center-friendly network architectures

Matt Walker / MTN Consulting

Webscale and transmission network operators' interests are aligning as the 5G era dawns

Matt Walker / MTN Consulting

Webscale and transmission network operators' interests are aligning as the 5G era dawns

Rémy Pascal / Analysys Mason

The launch of 5G by South Korean operators serves as a first benchmark for other operators around the world