CompTIA Touts New Security Certification

"A lot of the training [programs] out there are super in-depth, super-high-level, which is wonderful. But this doesn't just hit the high levels,this [covers] the security essentials and you've got to know it," Kane said. "It gives us a more robust and more complete offering."

Kris Madura, program manager for CompTIA's latest certification, Security, said since the program launched in December 2002, more than 500 people in 25 countries have been certified.

Oakbrook Terrace, Ill.-based CompTIA is offering certification programs and testing at about 4,000 different testing centers around the world, Madura said.

Pricing for the certification is $225 for nonmembers and $175 for employees of member organizations. The cost is worth the investment, particularly when considering that security salaries have outperformed overall IT salaries over the past two years, Madura said.

id
unit-1659132512259
type
Sponsored post

While there are other certification programs out there, the CompTIA certification provides a much-needed vendor-neutral program and is also aimed at helping companies hire security professionals or help 'worker bee' security professionals climb the IT career ladder, Madura said.

"While this is geared toward the technical foot-soldier level, it's not an entry-level certification, so it's not a pen-and-pencil type of test," she said. "There is thought required."

The Security++certification exam is targeted at professionals with at least two years of networking experience and a thorough knowledge of TCP/IP, Madura said.

Security , the newest of CompTIA's 11 certification programs, deals with mastering knowledge areas such as general security concepts, communications security, infrastructure security, basic cryptography and operational/organizations security.

Wireless technology security is included in the program, with a particular focus on communications, infrastructure and general security conflict issues such as the use of complimentary cyber cafes at industry conferences or hotels, Madura said.

"Wireless is singled out as a concept, but it's also included when you talk about things like access control both inside and outside the office," Madura said.

Fort Lauderdale, Fla.-based Guarded Networks provides its technical staff with training in vulnerability assessments and managed security services and also offers its small- and midsize-business customers general security awareness training, Kane said.

He recently worked with CompTIA's Software Services Group on the publication of a security white paper. From those sessions with CompTIA, Kane said he hooked into the thought process behind the Security++certification and began incorporating the principles underlying the certification into Guarded Networks' approach to IT security.

"I think [Security ] is going to take off like A++[a CompTIA standard used to validate vendor-neutral skills expected of an entry-level computer technician] did. It's a rules-of-the-road awareness that really helps us to sell our services, among other things," Kane said. "When everyone involved, including the customer, has a basic understanding of the concepts, it's a lot easier."

Nearly 20 market leaders, federal agencies and other professional organizations,including IBM, Microsoft, RSA, Sun Microsystems, VeriSign, the FBI, the Secret Service and the Information Systems Security Association,worked with CompTIA to develop the Security++certification program, Madura said.

"The robustness of the committee is what really helped us to drive and establish the objectives of the exam and the validity of the certification," Madura said. "This wasn't just a couple of people in a room who thought it was a good idea. This was a very widely supported effort."