Bailey Johnson

ITS 370

CH 11

 

1.       Search your library’s database and the Web for an article about people who violate their organization’s policy and are terminated. Did you find many? Why or why not?

 

No I didn’t find many, but that’s probably because most companies consider these “internal actions.” If they did report them that might reveal their own poor judgement in their hiring system or it might make them look weak to their competitors.

 

2.       Go to the (ISC) 2 Web site at www.isc2.org. Research the knowledge areas included in the tests for the CISSP and the SSCP. What areas must you study that are not included in this text?

 

CISSP Certification candidates must meet the following requirements prior to taking the CISSP examination.

They have the subscribe to the (ISC) 2 Code of Ethics

Have a minimum 3 years of direct full-time security professional work experience in one or more of the ten test domains of the information systems security Common Body of Knowledge.

CISSP-Information not covered in this text: Applications and Systems Development, Law Investigations and Ethics, Cryptography

 

SSCP Certification candidates must meet the following requirements prior to taking the SSCP examination

 

Subscribe to the (ISC) 2 Code of Ethics

Have at least 1 year of cumulative work experience in one or more of the seven test domains in the information systems (IS) security.

SSCP-Information not covered in this text: Audit and Monitoring, Cryptography, Malicious Code/Malware

 

3.       Using the Web, identify some certifications with an information security component that were not discussed in this chapter

 

NetScreen, Microsoft Certified Professional (MCP), Microsoft Certified Systems Engineer (MCSE), Microsoft Certified Professional Internet (MCP+I), Microsoft Certified Systems Administrator (MCSA), Microsoft Certified Professional Security, and IS Maintenance.

 

4.       Search the Web for at least five job postings for a security administrator. What qualifications do the listings have in common?

 

BS in Computer Science, 2- 5 years’ experience working in a technology company, Certified Information Systems Security Professional (CISSP)is preferred, Cisco Certified Security Professional (CCSP) is preferred, Cisco and Microsoft Network certifications are preferred, and more.