Information security certifications, training and jobs

The information security careers, training and certification resource center provides the latest news, expert advice and learning tools to help you make informed career choices, learn about CISSP, SANS and CISA certification, and the training required for information security jobs.

October 19, 2018 19 Oct'18
(ISC)2: Cybersecurity workforce shortage nears 3 million worldwide

With a workforce in short supply, the skills gap has affected the professional growth of security pros worldwide, an (ISC)2 Cybersecurity Workforce Study found.
October 09, 2018 09 Oct'18
At (ISC)² Security Congress 2018, a congressman calls for action

Rep. Cedric Richmond (D-La.) outlined three key strategies for addressing cybersecurity policy and workforce gaps.
August 14, 2018 14 Aug'18
Amanda Rousseau on becoming a cybersecurity researcher

Cybersecurity researcher Amanda Rousseau discusses the relationship between the infosec community and law enforcement and how to create the next generation of white hat hackers.
August 02, 2018 02 Aug'18
Black Hat 2018 survey: Cybersecurity staffing, budgets still lacking

According to a survey of Black Hat 2018 attendees, organizations are still struggling with insufficient cybersecurity staff and budgets to meet the current and emerging threats.

Bring yourself up to speed with our introductory content

How do cloud deployment models affect IT operations?

Security plays a vital role in cloud operations. Test your knowledge of important concepts covered in Domain 5 of the CCSP exam, “Operations,” with this practice quiz. Continue Reading
Curb cloud computing security risks with ITIL frameworks

As your use of cloud services grows, so does your need for effective IT service management so that permissions, controls and compliance requirements are consistently addressed. Continue Reading
Securing remote access for cloud-based systems

Don't believe the hype: Access control in the cloud is not a lost cause. Read these tips to learn how you can better secure remote access to your cloud-based systems. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

Consider international cloud security standards, legal reqs

Whether you're accessing (or operating) the cloud from Miami, Milan or Mumbai, you need to ensure those services meet regional cloud security standards and legal requirements. Continue Reading
Secure development lifecycle in the cloud: Trust but verify

Cloud providers may advertise their apps as secure, but it’s up to enterprises to validate those claims and confirm adherence to a secure development lifecycle. Continue Reading
Harden cloud apps with a secure software development lifecycle

Wouldn't it be nice if every application were 100% cloud-ready? Unfortunately, that's often not the case, which can lead to security risks down the line if not properly addressed. Continue Reading

Learn to apply best practices and optimize your operations.

Kurt Huhn discusses the role of CISO in the Ocean State

A strategy focused on widespread training and education leads to progress against one of the state's biggest threats, says the Rhode Island CISO. Continue Reading
Fannie Mae CISO calls for more data on security incidents

Chris Porter's years as a lead analyst and author of Verizon's Data Breach Investigations Report helped prepare him for the chief of security role at the primary housing lender. Continue Reading
Not enough information security analysts, despite higher wages

Survey data on global skills shortages does not show significant changes, even as companies turn to strategies such as security automation to make security teams more efficient. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

Find network security vulnerabilities by assessing risk

IT staff needs to regularly review network security vulnerabilities and security gaps to battle rising cybersecurity breaches and keep costs under control through risk assessments. Continue Reading
Security at Facebook: Building a diverse cybersecurity team

Facebook director of security Aanchal Gupta sounds off on the need for diverse security teams and gives an overview of how the social media giant is working to make it happen. Continue Reading
What are the root causes of the cybersecurity skills shortage?

SearchSecurity talks with David Shearer, CEO of (ISC)2, about what is -- and isn't -- contributing to the cybersecurity skills shortage in the U.S., as well as how to fix the problem. Continue Reading