Price: Varies primarily based on location of examination administration. For instance, Americas and Africa, $599; United Kingdom, £479; EMEA, €555.
Licensed Info Safety Supervisor (CISM)
The Licensed Info Safety Supervisor, provided by ISACA, is one other necessary certification for CISOs as a result of it’s particularly designed for professionals who’re liable for managing and overseeing data safety packages, making it a wonderful solution to exhibit administration and management, in keeping with Wetherill.
“The CISM certification supplies necessary data on the way to develop and implement efficient data safety methods that align with the general goals of your group whereas overlaying a variety of matters, resembling danger administration, incident administration, and data safety governance, all of that are essential to the CISO position,” Wetherill says.
The certification supplies the mandatory expertise and data to stability enterprise operations and powerful safety measures and focuses extra on administration and management expertise, whereas the CISSP is extra technical. “For CISOs, ISACA additionally provides plenty of good certifications, together with CISM,” says Raja. “This certification provides a stable set of instruments and coaching to handle a program.
For CISOs heading extra into the governance, danger and compliance or safety administration route, ISACA’s CISM is very beneficial, Martin says.
To earn this certification, you need to cross the examination, apply for certification inside 5 years after passing the examination, in addition to have 5 years of knowledge safety work expertise. You will need to have a minimal of three years of knowledge safety administration work expertise in three or extra of the job observe evaluation areas. Exceptions and substitutions are allowed for the five-year requirement.
Price: Examination price of $575 for ISACA members and $760 for non-members. After passing the examination, candidates pay a one-time $50 software processing price for his or her CISM certification.
Licensed Info Methods Auditor (CISA)
The Licensed Info Methods Auditor is one other important certification provided by ISACA for professionals liable for auditing, monitoring, and assessing their firms’ data safety and enterprise programs, in keeping with Wetherill.
“The CISA certification is acknowledged globally and is very regarded within the IT trade. It requires professionals to [validate] their data and proficiency in data safety auditing, management, and assurance,” Wetherill says “The CISA certification supplies an in-depth understanding of the way to determine, analyze, and consider data safety vulnerabilities and dangers. These expertise are important for a CISO to successfully carry out their jobs and defend their organizations from cyberthreats.”
Some certifications, such because the CISA, are higher for specialised safety roles, resembling an auditor, says Corey Nachreiner, CSO at WatchGuard Applied sciences. ISACA’s CISA helps if auditing an organization’s cybersecurity is your job focus.
Martin concurs, saying for CISOs in search of professions as auditors or evaluation specialists, ISACA’s CISA is very beneficial.
As well as, risk-based certifications, such because the CISA, assist CISOs of their major roles, understanding and managing IT dangers to companies, provides Sohail Iqbal, CISO at Veracode.
To earn this certification, you need to cross the examination and apply for certification inside 5 years after you cross the examination. You will need to even have at the least 5 years’ skilled data programs auditing, management, or safety work expertise. A minimal of two years have to be from inside the CISA job observe areas. Exceptions and substitutions are allowed for the five-year requirement.
Price: Examination price of $575 for ISACA members and $760 for non-members. After passing the examination, candidates pay a one-time $50 software processing price for his or her CISA certification.
GIAC Strategic Planning, Coverage, and Management (GSTRT)
This GIAC Strategic Planning, Coverage, and Management certification, provided by the SANS Institute, exhibits that you’ve the data and expertise to take the subsequent step in your profession with the power to create strategic plans that resonate with the enterprise, says Frank Kim, fellow on the Sans Institute.
“If you’ll want to transcend the technical particulars to extra successfully talk with senior management and the board, this certification exhibits that you know the way to align with strategic goals, create a roadmap, construct a enterprise case, create a safety coverage, and lead your staff to success,” he says.
To earn this certification, you need to cross the examination.
Price: GIAC certification try, $979.
Not necessary, certifications can take a profession to the subsequent stage
It’s essential to notice that whereas certificates aren’t necessary to attain a profession in cybersecurity, the data inside them could be invaluable in serving to navigate the trade, Neuhaus says. “With that stated, sought-after cybersecurity expertise shouldn’t be restricted to the variety of certifications one might have,” he says. “Reasonably, professionals who’re ingenious thinkers and possess different ability units, resembling communication, multitasking, and administration, that reach past the technical ones showcase that they’ve a well-rounded toolbox, particularly within the continually evolving panorama.”
It’s necessary that CISOs not lose sight of the opposite qualities, strengths, and attributes exterior of certifications which can be obligatory for making a holistic, strong workforce that has a multipronged strategy to cybersecurity, Neuhaus provides.
