Certifications for IT Security Professionals

This is Part 2 of a series on IT security certifications

Related:

Site Map  
About this site  

Vendor-Specific Certifications for IT Security Professionals

Security software has quickly become one the most important categories of software products. This has created demand for certifications to help employers more easily ensure that their employees are competent to work with software that “must work”.

The certification you may want to pursue will be influenced by the specific products each particular company may choose to install.

Type	Certifying Body
Vendor (product) specific	CheckPoint Cisco IBM Microsoft RSA Symantec

Each vendor has its own structure and rules for granting certifications.

CheckPoint

Certified Security Administrator (CCSA)
This certification is for end-users and resellers who need a good technical understanding of CheckPoint's FireWall-1 product and need to install and set up simple configurations.

Certified Security Expert Plus (CCSE Plus)
Formerly called the Certified Senior Security Specialist (CCSSS), this certification is for end-users who have sophisticated security requirements for their enterprise networks and engineers managing multiple FireWall-1 systems manufactured by CheckPoint. Those who sit for this test are required to take CheckPoint's VPN-1/FireWall-1 Management III - NG class.

Cisco

Cisco Security Specialist 1
This certification is recommended for those who focus on Cisco's network security products. This Cisco Qualified Specialist Designation requires 4 additional exams every 2 years:

• Managing Cisco Network Security (60 min for 55-65 questions)
• Cisco Secure PIX Firewall Advanced (75 min for 55-65 questions)
• Cisco Secure Intrusion Detection System Version 2.1 with Policy Manager
• Cisco Secure VPN (60 min for 60-70 questions)

These exams are an upgrade to those who are first a CCNA. One of these exams count toward the CCIP certification.

IBM/Tivoli

IBM SecureWay® Firewall for Windows NT® - Exam #000-250
This one-hour exam of 58 multiple choice questions is for professionals repsonsible the network security requirements as they relate to a firewall from Tivoli, now a division of IBM.

More of this Feature •  Braindumps for Exam 70-220 •  CBT Nuggetssells Windows 2000 MCSE courses for $99 each

Microsoft

Microsoft has two exams related to security:

MCP Exam 70-220: Security Design
This is a 4 hour (215 minute) exam with questions based on 4 wordy case studies. It's one of the choices for the required Design exam in the MCSE 2000 track.

To help people prepare for this exam, Micorosft offers a 5 day Instructor-led Course 2150 - Designing a Secure Microsoft Windows 2000 Network; Readiness Review; Training Kit and Academic Learning System.

MCP Exam 70-227: Installing, Configuring, and Administering Microsoft® Internet Security and Acceleration (ISA) Server 2000, Enterprise Edition
This exam was available since February 27, 2001.

ISAServer.org has an active message board visited by authors of books on ISA.

RSA's Certified Security Professional Program

Elsewhere on the Web •  RSA SecurID Certification Exams: Study Guidelines and Sample Test Questions 12 page pdf file •  RSA Keon Certification Exams: Study Guidelines and Sample Test Questions 8 page pdf file •  Microsoft Enablement •  Public Key Infrastructure

IT professionals working with enterprise security systems using RSA products can obtain certifications at three levels of responsibilities specific to each of its products.
• Keon public key infrastructure (PKI) products to enable, manage and simplify the use of digital certificates in Internet applications.

• SecurID enables two-factor Authentication, which strengthens passwords with a physical authenticator such as a smart card.

  Note: Tests for RSA's ClearTrust web access privilege management and other products are currently under development by RSA.

For each product, RSA offers three certifications for different job role responsibilities:

RSA Certified Administrator (RSA/CA)	RSA Certified Systems Engineer (RSA/CSE)
Understand the customer's unique system requirements	Design solutions from understanding customer needs and environments
Manage system functionality and perform administrative functions	Install solutions to meet customer needs and demonstrate product functionality
Support solutions by troubleshooting specific issues and providing the necessary maintenance.	Support solutions thorugh troubleshooting specific implementation and system integration issues

RSA Certified Instructor (RSA/CI)
This certification is for CSEs who have attended RSA's classes and Certified Instructor Workshop for the product they intend to teach. Only those who wish to be Certified Instructors are required to take classes from RSA.

RSA also recommends the book “Defending Your Digital Assets Against Hackers, Crackers, Spies & Thieves” by Randall Nichols, Daniel Ryan, et. al. (McGraw-Hill 0072122854)

All RSA's tests are administered by VUE.

Symantec Certification Program

Symantec (whose products include Norton Utilities) was one of the first companies offering software for the PC. Over the years, Symantec has focused more on high-end security software. Symantec offers three levels of certification based on its products organized into four specific areas of security focus (and associated technology exams):
• Firewall & VPN Technologies exam 251-202 (Symantec Enterprise Firewall exam 250-006 and a future exam on Firewall Advanced Concepts)

• Vulnerability Management exam 251-203 (Enterprise Security Manager exam 250-010 and NetRecon exam 250-009)

• Intrusion Detection exam 251-201 (Intruder Alert exam 250-007 and NetProwler exam 250-008)

• Virus Protection & Content Filtering exam 251-204 (Norton Antivirus exam 250-011 and future exam on WebSecurity)

An individual who passes any one technology exam is designated a Symantec Product Specialist (SPS). Symantec assumes that those taking its tests have a common base of knowledge on TCP/IP networking and OS proficiency.

Symantec offers a Symantec Certified Security Engineer (SCSE) certification in each security focus area. Symantec defines an SCSE as an individual with a “high-level understanding of a broad range of security solutions involved in the design, integration and deployment of comprehensive enterprise security solutions.” So one must pass Symantec's Security Awareness Exam. SCSEs must also pass two technology exams because Symantec says they have “in-depth knowledge and skills within a specific security focus”.

To become a Symantec Certified Security Practitioner (SCSP), who Symantec defines as “a senior security consultant who demonstrates in-depth knowledge and expertise across the complete range of security disciplines by achieving certification in all the designated security solutions categories.”, one has to “simply” obtain all four SCSE designations within an 18 month period.

This may be a tall order because most companies take a “best of breed” approach to buying a portfolio of security products — buying products from different companies. Currently, no company has the best product in every market category.

All Symantec's tests are administered by Prometric. A website managed by Galton Technologies manages the personal profiles and progress records for those pursuing Symantec certifications.

Conclusion

As with other computer certifications, I recommend that you research all of the possible certifications available thoroughly. Because these certifications require special equipment, it is especially difficult to study for these exams without employer sponsorship. Due to the time commitment involved in obtaining a certification, you want to be sure that you have chosen a certification that will be worth the effort.

If I have omitted an available certification for IT security professionals, please email me so that I can add the certification to the list. If you have any questions or topic suggestions, let me know or submit feedback. See you next time.

Next page > Vendor-neutral IT Security Certifications > Page 1, 2