Value: Varies primarily based on location of examination administration. For instance, Americas and Africa, $599; United Kingdom, £479; EMEA, €555.
Licensed Info Safety Supervisor (CISM)
The Licensed Info Safety Supervisor, provided by ISACA, is one other necessary certification for CISOs as a result of it’s particularly designed for professionals who’re answerable for managing and overseeing data security applications, making it a superb technique to reveal administration and management, in line with Wetherill.
“The CISM certification offers necessary data on the way to develop and implement efficient data security methods that align with the general aims of your group whereas masking a variety of matters, equivalent to danger administration, incident administration, and data security governance, all of that are important to the CISO function,” Wetherill says.
The certification offers the mandatory expertise and data to steadiness enterprise operations and robust security measures and focuses extra on administration and management expertise, whereas the CISSP is extra technical. “For CISOs, ISACA additionally presents lots of good certifications, together with CISM,” says Raja. “This certification offers a strong set of instruments and coaching to handle a program.
For CISOs heading extra into the governance, danger and compliance or security administration route, ISACA’s CISM is extremely really helpful, Martin says.
To earn this certification, you could go the examination, apply for certification inside 5 years after passing the examination, in addition to have 5 years of data security work expertise. You have to have a minimal of three years of data security administration work expertise in three or extra of the job apply evaluation areas. Exceptions and substitutions are allowed for the five-year requirement.
Value: Examination charge of $575 for ISACA members and $760 for non-members. After passing the examination, candidates pay a one-time $50 utility processing charge for his or her CISM certification.
Licensed Info Programs Auditor (CISA)
The Licensed Info Programs Auditor is one other important certification provided by ISACA for professionals answerable for auditing, monitoring, and assessing their firms’ data security and enterprise techniques, in line with Wetherill.
“The CISA certification is acknowledged globally and is extremely regarded within the IT business. It requires professionals to [validate] their data and proficiency in data security auditing, management, and assurance,” Wetherill says “The CISA certification offers an in-depth understanding of the way to determine, analyze, and consider data security vulnerabilities and dangers. These expertise are very important for a CISO to successfully carry out their jobs and defend their organizations from cyberthreats.”
Some certifications, such because the CISA, are higher for specialised security roles, equivalent to an auditor, says Corey Nachreiner, CSO at WatchGuard Applied sciences. ISACA’s CISA helps if auditing an organization’s cybersecurity is your job focus.
Martin concurs, saying for CISOs in search of professions as auditors or evaluation specialists, ISACA’s CISA is extremely really helpful.
As well as, risk-based certifications, such because the CISA, assist CISOs of their main roles, understanding and managing IT dangers to companies, provides Sohail Iqbal, CISO at Veracode.
To earn this certification, you could go the examination and apply for certification inside 5 years after you go the examination. You have to even have a minimum of 5 years’ skilled data techniques auditing, management, or security work expertise. A minimal of two years should be from throughout the CISA job apply areas. Exceptions and substitutions are allowed for the five-year requirement.
Value: Examination charge of $575 for ISACA members and $760 for non-members. After passing the examination, candidates pay a one-time $50 utility processing charge for his or her CISA certification.
GIAC Strategic Planning, Coverage, and Management (GSTRT)
This GIAC Strategic Planning, Coverage, and Management certification, provided by the SANS Institute, reveals that you’ve the data and expertise to take the following step in your profession with the flexibility to create strategic plans that resonate with the enterprise, says Frank Kim, fellow on the Sans Institute.
“If you’ll want to transcend the technical particulars to extra successfully talk with senior management and the board, this certification reveals that you know the way to align with strategic aims, create a roadmap, construct a enterprise case, create a security coverage, and lead your crew to success,” he says.
To earn this certification, you could go the examination.
Value: GIAC certification try, $979.
Not obligatory, certifications can take a profession to the following degree
It’s essential to notice that whereas certificates aren’t obligatory to attain a profession in cybersecurity, the knowledge inside them may be invaluable in serving to navigate the business, Neuhaus says. “With that stated, sought-after cybersecurity expertise will not be restricted to the variety of certifications one might have,” he says. “Slightly, professionals who’re ingenious thinkers and possess different talent units, equivalent to communication, multitasking, and administration, that reach past the technical ones showcase that they’ve a well-rounded toolbox, particularly within the continuously evolving panorama.”
It’s necessary that CISOs not lose sight of the opposite qualities, strengths, and attributes exterior of certifications which are mandatory for making a holistic, sturdy workforce that has a multipronged strategy to cybersecurity, Neuhaus provides.
