Fundamental Information Security Chapter 14: Information Security Professional Certifications

Fundamental Information Security Chapter 14: Information Security Professional Certifications Jonas is an experienced information security professional with a specialized focus on evaluating computers for evidence of ...

Fundamental Information Security Chapter 14: Information Security Professional Certifications Jonas is an experienced information security professional with a specialized focus on evaluating computers for evidence of criminal or malicious activity and recovering data. Which GIAC certification would be most appropriate for Jonas to demonstrate his abilities? GIAC Systems and Network Auditor (GSNA) GIAC Certified Forensic Examiner (GCFE) GIAC Certified Firewall Analyst (GCFW) GIAC Certified Penetration Tester (GPEN) - ANS - GIAC Certified Forensic Examiner (GCFE) The HealthCare Certified Information Security and Privacy Practitioner (HCISPP) credential recognizes the knowledge and skills necessary to perform and conduct security and privacy work for health care organizations. True False - ANS - True A certification is an official statement that validates that a person has satisfied specific job requirements. True False - ANS - True The CISSP-ISSEP concentration requires that a candidate demonstrate two years of professional experience in the area of architecture. True False - ANS - False Which of the following is NOT a role described in DoD Directive 8140, which covers cyber security training? Attack Protect and defend Operate and maintain Investigate - ANS - Attack What certification organization began as an offshoot of the SANS Institute training programs? International Information Systems Security Certification Consortium, Inc. (ISC)2 CompTIA Certified Internet Webmaster (CIW) Global Information Assurance Certification (GIAC) - ANS - Global Information Assurance Certification (GIAC) DoD Directive 8570.01 is a voluntary certification requirement. True False - ANS - False One requirement of the GIAC Security Expert (GSE) credential is that candidates must hold three GIAC credentials, with two of the credentials being Gold. True False - ANS - True What DoD directive requires that information security professionals in the government earn professional certifications? 8088 8140 8270 8540 - ANS - 8140 The (ISC) 2 Systems Security Certified Practitioner (SSCP) credential covers the seven domains of best practices for information security. True False - ANS - True Juniper Networks offers vendor-specific certifications. True False - ANS - True How many years of specialized experience are required to earn one of the Certified Information Systems Security Professional (CISSP) concentrations? Two Three Four Five - ANS - Two Fran is interested in learning more about the popular Certified Ethical Hacker (CEH) credential. What organization should she contact? High Tech Crime Network International Council of E-Commerce Consultants (EC-Council) Software Engineering Institute - Carnegie Mellon University The International Society of Forensic Computer Examiners - ANS - International Council of ECommerce Consultants (EC-Council) A GIAC credential holder may submit a technical paper that covers an important area of information security. If the paper is accepted, it adds the Gold credential to the base GIAC credential. True False - ANS - True DoD and NSA have adopted several training standards to serve as a pathway to satisfy Directive 8140. Although they are called standards, they are really training requirements for specific job responsibilities. True False - ANS - True Rod has been a Certified Information Systems Security Professional (CISSP) for 10 years. He would like to earn an advanced certification that demonstrates his ability in information security architecture. Which of the following CISSP concentrations would meet Rod's needs? CISSP-ISASP CISSP-ISSEP CISSP-ISSMP CISSP-ISSAP - ANS - CISSP-ISSAP Ben is working toward a position as a senior security administrator and would like to earn his first International Information Systems Security Certification Consortium, Inc. (ISC) 2 certification. Which certification is most appropriate for his needs? Systems Security Certified Practitioner (SSCP) Certified Information Systems Security Professional (CISSP) Certified Secure Software Lifecycle Professional (CSSLP) Certified Cloud Security Professional (CCSP) - ANS - Systems Security Certified Practitioner (SSCP) Richard would like to earn