Despite the wide selection of vendor-specific information technology security certifications, identifying which... Show
ones best suit your educational or career needs is fairly straightforward. This guide to vendor-specific IT security certifications includes an alphabetized table of security certification programs from various vendors, a brief description of each certification and advice for further details. Introduction: Choosing vendor-specific information technology security certificationsThe process of choosing the right vendor-specific information technology security certifications is much simpler than choosing vendor-neutral ones. In the vendor-neutral landscape, you must evaluate the pros and cons of various programs to select the best option. On the vendor-specific side, it's only necessary to follow these three steps:
In an environment where qualified IT security professionals can choose from numerous job openings, the benefits of individual training and certifications can be hard to appraise. Many employers pay certification costs to develop and retain their employees, as well as to boost the organization's in-house expertise. Most see this as a win-win for employers and employees alike, though employers often require full or partial reimbursement for the related costs incurred if employees leave their jobs sooner than some specified payback period after certification. There have been quite a few changes since the last survey update in 2015. The Basic category saw a substantial jump in the number of available IT security certifications due to the addition of several Brainbench certifications, in addition to the Cisco Certified Network Associate (CCNA) Cyber Ops certification, the Fortinet Network Security Expert Program and new IBM certifications. Certifications from AccessData, Check Point, IBM and Oracle were added to the Intermediate category, increasing the total number of certifications in that category, as well. However, the number of certifications in the Advanced category decreased, due to several IBM certifications being retired. Basic information technology security certificationsBrainbench basic
security certifications
Source: Brainbench Information Security Administrator certifications CCNA Cyber Ops This associate-level certification prepares cybersecurity professionals for work as cybersecurity analysts responding to security incidents as part of a security operations center team in a large organization. The CCNA Cyber Ops certification requires candidates to pass two written exams. Source: Cisco Systems CCNA Cyber Ops CCNA Security This credential validates that associate-level professionals are able to install, troubleshoot and monitor Cisco-routed and switched network devices for the purpose of protecting both the devices and networked data. A person with a CCNA Security certification can be expected to understand core security concepts, endpoint security, web and email content security, the management of secure access, and more. He should also be able to demonstrate skills for building a security infrastructure, identifying threats and vulnerabilities to networks, and mitigating security threats. CCNA credential holders also possess the technical skills and expertise necessary to manage protection mechanisms such as firewalls and intrusion prevention systems, network access, endpoint security solutions, and web and email security. The successful completion of one exam is required to obtain this credential. Source: Cisco Systems CCNA Security Check Point Certified Security Administrator (CCSA) R80 Check Point's foundation-level credential prepares individuals to install, configure and manage Check Point security system products and technologies, such as security gateways, firewalls and virtual private networks (VPNs). Credential holders also possess the skills necessary to secure network and internet communications, upgrade products, troubleshoot network connections, configure security policies, protect email and message content, defend networks from intrusions and other threats, analyze attacks, manage user access in a corporate LAN environment, and configure tunnels for remote access to corporate resources. Candidates must pass a single exam to obtain this credential. Source: Check Point CCSA Certification IBM Certified Associate -- Endpoint Manager V9.0 This credential recognizes professionals who use IBM Endpoint Manager V9.0 daily. Candidates for this certification should know the key concepts of Endpoint Manager, be able to describe the system's components and be able to use the console to perform routine tasks. Successful completion of one exam is required. Editor's note: IBM is retiring this certification as of May 31, 2017; there will be a follow-on test available as of April 2017 for IBM BigFix Compliance V9.5 Fundamental Administration, Test C2150-627. Source: IBM Certified Associate -- Endpoint Manager V9.0 IBM Certified Associate -- Security Trusteer Fraud Protection This credential pertains mainly to sales engineers who support the Trusteer Fraud product portfolio for web fraud management, and who can implement a Trusteer Fraud solution. Candidates must understand Trusteer product functionality, know how to deploy the product, and be able to troubleshoot the product and analyze the results. To obtain this certification, candidates must pass one exam. Source: IBM Certified Associate -- Security Trusteer Fraud Protection McAfee Product Specialist McAfee information technology security certification holders possess the knowledge and technical skills necessary to install, configure, manage and troubleshoot specific McAfee products, or, in some cases, a suite of products. Candidates should possess one to three years of direct experience with one of the specific product areas. The current products targeted by this credential include:
All credentials require passing one exam. Source: McAfee Certification Program Microsoft Technology Associate (MTA) This credential started as an academic-only credential for students, but Microsoft made it available to the general public in 2012. There are 10 different MTA credentials across three tracks (IT Infrastructure with five certs, Database with one and Development with four). The IT Infrastructure track includes a Security Fundamentals credential, and some of the other credentials include security components or topic areas. To earn each MTA certification, candidates must pass the corresponding exam. Source: Microsoft MTA Certifications Fortinet Network Security Expert (NSE) The Fortinet NSE program has eight levels, each of which corresponds to a separate network security credential within the program. The credentials are:
NSE 1 is open to anyone, but is not required. The NSE 2 and NSE 3 information technology security certifications are available only to Fortinet employees and partners. Candidates for NSE 4 through NSE 8 should take the exams through Pearson VUE. Source: Fortinet NSE Symantec Certified Specialist (SCS) To become an SCS, candidates must select an area of focus and pass an exam. All the exams cover core elements, such as installation, configuration, product administration, day-to-day operation and troubleshooting for the selected focus area. As of this writing, the following exams are available:
Source: Symantec Certification Intermediate information technology security certificationsAccessData Certified Examiner (ACE) This credential recognizes a professional's proficiency using AccessData's FTK, FTK Imager, Registry Viewer and Password Recovery Toolkit. However, candidates for the certification must also have moderate digital forensic knowledge and be able to interpret results gathered from AccessData tools. To obtain this certification, candidates must pass one online exam (which is free). Although a boot camp and advanced courses are available for a fee, AccessData provides a set of free exam preparation videos to help candidates who prefer to self-study. The certification is valid for two years, after which credential holders must take the current exam to maintain their certification. Source: Syntricate ACE Training Cisco Certified Network Professional (CCNP) Security This Cisco credential recognizes professionals who are responsible for router, switch, networking device and appliance security. Candidates must also know how to select, deploy, support and troubleshoot firewalls, VPNs and intrusion detection system/intrusion prevention system products in a networking environment. Successful completion of four exams is required. Source: Cisco Systems CCNP Security Check Point Certified Security Expert (CCSE) This is an intermediate-level credential for security professionals seeking to demonstrate skills at maximizing the performance of security networks. A CCSE demonstrates a knowledge of strategies and advanced troubleshooting for Check Point's GAiA operating system, including installing and managing VPN implementations, advanced user management and firewall concepts, policies, and backing up and migrating security gateway and management servers, among other tasks. The CCSE focuses on Check Point's VPN, Security Gateway and Management Server systems. To acquire this credential, candidates must pass one exam. Source: Check Point CCSE program Cisco Cybersecurity
Specialist This Cisco credential targets IT security professionals who possess in-depth technical skills and knowledge in the field of threat detection and mitigation. The certification focuses on areas such as event monitoring, event analysis (traffic, alarm, security events) and incident response. One exam is required. Source: Cisco Systems Cybersecurity Specialist Certified SonicWall Security Administrator (CSSA) The CSSA exam covers basic administration of SonicWall appliances and the network and system security behind such appliances. Classroom training is available, but not required to earn the CSSA. Candidates must pass one exam to become certified. Source: SonicWall Certification programs EnCase Certified Examiner (EnCE) Aimed at both private- and public-sector computer forensic specialists, this certification permits individuals to become certified in the use of Guidance Software's EnCase computer forensics tools and software. Individuals can gain this certification by passing a two-phase exam: a computer-based component and a practical component. Source: Guidance Software EnCE EnCase Certified eDiscovery Practitioner (EnCEP) Aimed at both private- and public-sector computer forensic specialists, this certification permits individuals to become certified in the use of Guidance Software's EnCase eDiscovery software, and it recognizes their proficiency in eDiscovery planning, project management and best practices, from legal hold to file creation. EnCEP-certified professionals possess the technical skills necessary to manage E-discovery, including the search, collection, preservation and processing of electronically stored information in accordance with the Federal Rules of Civil Procedure. Individuals can gain this certification by passing a two-phase exam: a computer-based component and a scenario component. Source: Guidance Software EnCEP Certification Program IBM Certified Administrator -- Security Guardium V10.0 IBM Security Guardium is a suite of protection and monitoring tools designed to protect databases and big data sets. The IBM Certified Administrator -- Security Guardium credential is aimed at administrators who plan, install, configure and manage Guardium implementations. This may include monitoring the environment, including data; defining policy rules; and generating reports. Successful completion of one exam is required. Source: IBM Security Guardium Certification IBM Certified Administrator -- Security QRadar Risk Manager V7.2.6 QRadar Risk Manager automates the risk management process in enterprises by monitoring network device configurations and compliance. The IBM Certified Administrator -- Security QRadar Risk Manager V7.2.6 credential certifies administrators who use QRadar to manage security risks in their organization. Certification candidates must know how to review device configurations, manage devices, monitor policies, schedule tasks and generate reports. Successful completion of one exam is required. Source: IBM Security QRadar Risk Manager Certification IBM Certified Analyst -- Security
SiteProtector System V3.1.1 The Security SiteProtector System enables organizations to centrally manage their network, server and endpoint security agents and appliances. The IBM Certified Analyst -- Security SiteProtector System V3.1.1 credential is designed to certify security analysts who use the SiteProtector System to monitor and manage events, monitor system health, optimize SiteProtector and generate reports. To obtain this certification, candidates must pass one exam. Source: IBM Security SiteProtector Certification Oracle Certified Expert, Oracle Solaris 10 Certified Security
Administrator This credential aims to certify experienced Solaris 10 administrators with security interest and experience. It's a midrange credential that focuses on general security principles and features, installing systems securely, application and network security, principle of least privilege, cryptographic features, auditing, and zone security. A single exam -- geared toward the Solaris 10 operating system or the OpenSolaris environment -- is required to obtain this credential. Source: Oracle Solaris Certification Oracle Mobile Security This credential recognizes professionals who create configuration designs and implement the Oracle Mobile Security Suite. Candidates must have a working knowledge of Oracle Mobile Security Suite Access Server, Oracle Mobile Security Suite Administrative Console, Oracle Mobile Security Suite Notification Server, Oracle Mobile Security Suite Containerization and Oracle Mobile Security Suite Provisioning and Policies. They must also know how to deploy the Oracle Mobile Security Suite. Although the certification is designed for Oracle PartnerNetwork members, it is available to any candidate. Successful completion of one exam is required. Source: Oracle Mobile Security Certification RSA Archer Certified Administrator (CA) Dell EMC offers this certification, which is designed for security professionals who manage, administer, maintain and troubleshoot the RSA Archer Governance, Risk and Compliance (GRC) platform. Candidates must pass one exam, which focuses on integration and configuration management, security administration, and the data presentation and communication features of the RSA Archer GRC product. Source: Dell EMC RSA Archer Certification RSA SecurID Certified Administrator (RSA Authentication Manager 8.0) Dell EMC offers this certification, which is designed for security professionals who manage, maintain and administer enterprise security systems based on RSA SecurID system products and RSA Authentication Manager 8.0. RSA SecurID CAs can operate and maintain RSA SecurID components within the context of their operational systems and environments; troubleshoot security and implementation problems; and work with updates, patches and fixes. They can also perform administrative functions and populate and manage users, set up and use software authenticators, and understand the configuration required for RSA Authentication Manager 8.0 system operations. Source: Dell EMC RSA Authentication Manager Certification RSA Security Analytics CA This Dell EMC certification is aimed at security professionals who configure, manage, administer and troubleshoot the RSA Security Analytics product. Knowledge of the product's features, as well the ability to use the product to identify security concerns, are required. Candidates must pass one exam, which focuses on RSA Security Analytics functions and capabilities, configuration, management, monitoring and troubleshooting. Source: Dell EMC RSA Security Analytics Advanced information technology security certificationsCCIE Security Arguably one of the most coveted certifications around, the CCIE is in a league of its own. Having been around since 2002, the CCIE Security track is unrivaled for those interested in dealing with information security topics, tools and technologies in networks built using or around Cisco products and platforms. The CCIE certifies that candidates possess expert technical skills and knowledge of security and VPN products; an understanding of Windows, Unix, Linux, network protocols and domain name systems; an understanding of identity management; an in-depth understanding of Layer 2 and 3 network infrastructures; and the ability to configure end-to-end secure networks, as well as to perform troubleshooting and threat mitigation. To achieve this certification, candidates must pass both a written and lab exam. The lab exam must be passed within 18 months of the successful completion of the written exam. Source: Cisco Systems CCIE Security Certification Check Point Certified Managed
Security Expert (CCMSE) This advanced-level credential is aimed at those seeking to learn how to install, configure and troubleshoot Check Point's Multi-Domain Security Management with Virtual System Extension. Professionals are expected to know how to migrate physical firewalls to a virtualized environment, install and manage an MDM environment, configure high availability, implement global policies and perform troubleshooting. Source: Check Point CCMSE Check Point Certified Security Master (CCSM) The CCSM is the most advanced Check Point certification available. This credential is aimed at security professionals who implement, manage and troubleshoot Check Point security products. Candidates are expected to be experts in perimeter, internal, web and endpoint security systems. To acquire this credential, candidates must pass a written exam. Source: Check Point CCSM Certification Certified SonicWall Security Professional (CCSP) Those who achieve this certification have attained a high level of mastery of SonicWall products. In addition, credential holders should be able to deploy, optimize and troubleshoot all the associated product features. Earning a CSSP requires taking an advanced administration course that focuses on either network security or secure mobile access, and passing the associated certification exam. Source: SonicWall CSSP certification IBM Certified Administrator -- Tivoli Monitoring V6.3 Those who attain this certification are expected to be capable of planning, installing, configuring, upgrading and customizing workspaces, policies and more. In addition, credential holders should be able to troubleshoot, administer and maintain an IBM Tivoli Monitoring V6.3 environment. Candidates must successfully pass one exam. Source: IBM Tivoli Certified Administrator Master Certified SonicWall Security Administrator (CSSA) To qualify for Master CSSA, candidates must pass three (or more) CSSA exams, and then email [email protected] to request the designation. There are no other charges or requirements involved. Source: SonicWall Master CSSA ConclusionRemember, when it comes to selecting vendor-specific information technology security certifications, your organization's existing or planned security product purchases should dictate your options. If your security infrastructure includes products from vendors not mentioned here, be sure to check with them to determine if training or certifications on such products are available. About the
author: Next StepsLearn more about the importance of ISO 27001 and other security certifications Read about the best certifications for cloud security Find out more about the latest certification programs from Cisco This was last published in June 2017 Dig Deeper on Careers and certifications
Which of the following types of certifications validates the holders have met the baseline of understanding required by all cybersecurity job positions?CompTIA Security+ is a global certification that validates the baseline skills necessary to perform core security functions and pursue an IT security career.
What organization offers a variety of security certifications that are focused on the requirements of auditors quizlet?What organization offers a variety of security certifications that are focused on the requirements of auditors? One requirement of the GIAC Security Expert (GSE) credential is that candidates must hold three GIAC credentials, with two of the credentials being Gold.
Which of the following is a certification offered by the International information systems security certification Consortium ISC 2?The most notable certification offered by (ISC)² is the Certified Information Systems Security Professional (CISSP).
What organization offers a variety of security certification that are focused on the requirements of auditors?The CISA focuses on the skills that allow candidates to audit, control and monitor information technology and business systems. This security certification is a good move for any security professionals who want a certification that is an internationally recognized standard in system auditing and controls.
|