IT Security Certifications for Professionals

General IT Security

Probably the most valued of this list are CISSP and CISM.

SSCP

Issued by (ISC)2.

In the PECB ISO/IEC 27001 Lead Implementer course notes, it describes “SSCP” as “for new graduates”.

CISSP

Certified Information Systems Security Professional

Issued by (ISC)²

Requires 5 years of experience.
Official link

In the PECB ISO/IEC 27001 Lead Implementer course notes, it describes “CISSP” as “for experienced professionals in information security”.

CISM

Certification in Information Security Manager
Issued by ISACA
Candidate needs both to pass an exam and prove previous experience on the topic to get the certificate.
Official link

In the PECB ISO/IEC 27001 Lead Implementer course notes, it describes “CISSP” as “for experienced professionals in information security”.

CSX-P

Cybersecurity Nexus Practitioner Certification
Issued by ISACA
Candidate needs both to pass an exam and prove previous experience on the topic to get the certificate.
Official link

CSX-F

Cybersecurity Nexus Fundamentals Certificate (CSX-F)

Issued by ISACA

It is just an exam, candidate does not need to prove previous experience to get the certificate.

Official link

For new graduates.

Security+

Issued by CompTIA
Official link

In the PECB ISO/IEC 27001 Lead Implementer course notes, it describes “Security+” as “for new graduates”.

GICSP

Global Industrial Cyber Security Professional

Issued by GIAC.

Official link

IT Security Pentesting

CEH

Certified Ethical Hacker

Issued by EC-Council.
https://www.eccouncil.org/programs/certified-ethical-hacker-ceh/

OSCP / PEN-200

Offensive Security Certified Professional (OSCP), also call PEN-200 (from Penetration)

Issued by Offensive Security.

PWK (Penetration with Kali Linux) is the Offensive Security’s flagship Ethical Hacking course. It would be similar to CEH, but harder.

Official link

IT Cloud Security

Comparing the CCSP and CCSK

CCSK

Certificate in Cloud Security Knowledge (CCSK).

Issued by Cloud Security Alliance (CSA).

https://cloudsecurityalliance.org/education/ccsk/

CCSP

Cloud Computing Security Professional (CCSP).

Issued by (ISC)2.
https://www.isc2.org/Certifications/CCSP

IT Audit

CISA

Certified Information System Auditor

Issued by ISACA

Candidate needs both to pass an exam and prove previous experience on the topic to get the certificate.

Official link

In the PECB ISO/IEC 27001 Lead Implementer course notes, it describes “CISSP” as “for experienced professionals in information security”.

CIA

Certified Internal Auditor (CIA) is issued by the Institute of Internal Auditors (IIA).

Official link

Cybersecurity Audit

Cybersecurity Audit is Issued by ISACA.

Official link

IT Security Framework Implementer

See more on post “IT Security Frameworks“.

ISO 27001 Lead Implementer

Read internal post “ISO/IEC 27001 Lead Implementer Certifications“.

Certified NIST Cybersecurity Framework Lead Implementer

https://niccs.cisa.gov/training/search/certified-information-security/certified-nist-cybersecurity-framework-lead

Enterprise Information Security Architecture

Zachman Certified

https://www.zachman.com/courses

Zachman framework course.

CISSP-ISSAP

CISSP-ISSAP (Information Systems Security Architecture Professional) is a specialization of CISSP. It is issued by (ISC)2.

Specific to security.

Read more on this post.

GDSA

GDSA (GIAC Defensible Security Architecture) is issued by GIAC.

https://www.giac.org/certifications/defensible-security-architecture-gdsa/

Microsoft Cybersecurity Architect

Microsoft Cybersecurity Architect is obtained after passing exam SC-100.

IT Risk Management

CRISC

Certified in Risk and Information Systems Control

Issued by Isaca.

CRMA

Certification in Risk Management Assurance

ISO/IEC 2005 Certified Risk Manager

ISO/IEC 2005 Certified Risk Manager

IT Security Forensics

CHFI

Computer Hacking Forensic Investigator

Issued by EC-Council

Microsoft Technology Security Certifications

Microsoft exams related to Technology Security:

  • SC-100. Microsoft Cybersecurity Architect
  • SC-200. Microsoft Security Operations Analyst
  • SC-300. Microsoft Identity and Access Administrator
  • SC-900. Security, Compliance and Identity Fundamentals
  • AZ-500. Microsoft Azure Security Technologies
  • MS-500. Microsoft 365 Security Administration
  • 20744C. Securing Windows Server 2016

Microsoft exams containing one or many modules about security:

  • MD-100. Modern DesktopMicrosoft 365 Security Administration

SC-900. Security, Compliance and Identity Fundamentals

It is the fundamental or entry-level certification for SC (Security) area of knowledge.

To get more information about how to check this certification, please check this post.

AWS IT Security Certifications

AWS is Amazon’s cloud service.

Among the AWS Certifications, there is one dedicated to cybersecurity:

  • AWS Certified Security Specialty

AWS Certified Security Specialty

https://aws.amazon.com/en/certification/certified-security-specialty/

Oracle IT Security Certifications

You can find a list of certifications from Oracle related to security on this link:

https://education.oracle.com/paas/security/pfamily_654

You might be also interested in…

One comment

Leave a Reply

Your email address will not be published. Required fields are marked *