Certified Information Systems Security Professional (CISSP) is an independent information security certification governed by the International Information Systems Security Certification Consortium (ISC2). CISSP was the first credential in the field of information security to meet the stringent requirements of ISO/IEC Standard 17024. Not only is the CISSP an objective measure of excellence, but also a globally recognized standard of achievement.
Symantec continues to encourage our employees to achieve CISSP certification and ISSA membership/fellowship as they demonstrate to our customers that we are committed and qualified to advise them on their information security programs.
It’s been 15 years since I took the CISSP test and I continue to see new CISSP achievers recognized within Symantec. This is great to see. As a global leader in information security, at Symantec we must ensure we are continually developing our skills to offer the best in information security to our customers.
This new knowledge and professional accreditation is extremely valuable beyond our company walls. For example, as an information security professional I find huge fulfillment in leveraging my CISSP certification to contribute to the InfoSec community.
There are numerous ways to do this – giving back to the public or mentoring those just beginning their InfoSec journeys.
For example, national and local security associations such as ISSA and (ISC)2 need active members and volunteers. Don’t just join – participate – attend meetings, present at meetings and network with your peers. Be proud of your certification and know that people will listen to your knowledge and insights.
You may also consider joining the Board of Directors of your local information security association (e.g. ISSA, ISC2, others). Thought leaders are also needed and sought after. ISSA has a Fellow Program that recognizes sustained membership and contributions to the profession. This is beneficial for all as you also become recognized as an industry thought leader, building people's knowledge and building your personal credentials.
Mentoring is another great example that is very much needed and one that I have personally found very rewarding. The InfoSec leaders of tomorrow are starting at a younger age and are hungry for guidance.
This is not to say you must be CISSP-certified to make a difference in the InfoSec community. For example, at Symantec we have a multitude of options for employees to give back. For example, we have virtual mentoring programs through Career Village, and our Online Safety in the Community program provides instant lessons to Symantec employees who wish to visit classrooms in their community to help kids and parents become safe cyber citizens. Additionally, through our Dollars for Doers program, employees who volunteer may qualify grants and Symantec will donate $15 for every hour of volunteer service up to $1,000 per employee each calendar year.
As the largest and greatest security company we must do our part to support the information security community and make an impact in the communities of our customers.
In closing a congratulations to all CISSPs within and outside of Symantec. I urge you think beyond your certification, about how this new achievement can be further applied to support others in the InfoSec community – current professionals or future ones.
Please contact me if you would like to know more about CISSP or how you can make a difference in the security arena.
Scott Parker is Symantec’s Principal Systems Engineer and ISSA Distinguished Fellow