(ISC)² Blog

02 December 2021

Data Consistency Storage in the Cloud

In cloud computing environments, files are not stored in a hierarchical way. Most cloud architectures use a combination of splitting data vertically, horizontally and replication to improve response times, scalability, availability and fault tolerance. This is called object storage. Objects are accessible through APIs or through a web interface. Object storage introduces new challenges related to data consistency, which are not present in relational databases. One of the more fundamental decisions cloud professionals need to make is whether they will choose eventual consistency for data in corporate systems or strong consistency. Selecting a data consistency model is a decision that... Read more →

Posted by (ISC)² Management on 02 December 2021 at 08:00 AM in Cloud Security, Cybersecurity Certifications | Permalink | Comments (0)

Tags: CCSP, Certified Cloud Security Professional, Cloud Certification, Cloud Storage, Data Consistency

01 December 2021

CISSPs from Around the Globe: An Interview with Chinyelu Philomena Karibi-Whyte

The Certified Information Systems Security Professional (CISSP) certification is considered to be the gold standard in information security. This is so because of all the doors that certification opens to a CISSP professional. Those doors lead to many different types of positions and opportunities, thus making the information security community dynamic and multifaceted. In this installment, we talk Chinyelu Philomena Karibi-Whyte. Chinyelu shares with us why she pursued CISSP and how achieving it enabled her to develop her career and negotiate a better salary. What job do you do today? I am a Cyber Security Consultant within the Cloud Infrastructure... Read more →

Posted by (ISC)² Management on 01 December 2021 at 08:00 AM in Spotlight | Permalink | Comments (0)

Tags: Certified Information Systems Security Professional, Chinyelu Philomena Karibi-Whyte, CISSP, cyber jobs, cybersecurity career, cybersecurity professional

30 November 2021

A Safe and Secure Way to Decommission

When it comes time to decommission data storage systems, there is much that must be planned and thoroughly carried out. It’s not just about the activity, it is also about due diligence, oversight, and proof. Data that appears to have been deleted is often still recoverable, and in many cases, people make mistakes, such as forgetting a second backup exists somewhere else, or forgetting to verify that a destruction has been successfully and completely deployed. Human errors like this are referred to as unintentional insider threats, since they lead to the potential of data theft, litigation, and penalties. It is... Read more →

Posted by (ISC)² Management on 30 November 2021 at 08:00 AM in Cybersecurity Certifications | Permalink | Comments (0)

Tags: CAP, Certified Authorization Professionals, data destruction, data protection, data storage systems

29 November 2021

How to Prepare for CISSP Exam Day

By deciding to take the CISSP exam, you’ve chosen to further your education and showcase your knowledge and experience by achieving the world’s premier cybersecurity certification. Soon, you will join the ranks of more than 147,000 global leaders committed to a safe and secure cyber world. Make a Timeline As you prep for your CISSP exam, first consider your experience level and determine a timeline that fits for your current workload and lifestyle. The amount of time you need to dedicate to studying can vary based on your experience. Do you have questions about creating a CISSP study plan? Learn... Read more →

Posted by (ISC)² Management on 29 November 2021 at 07:00 AM in Cybersecurity Certifications, Cybersecurity Training | Permalink | Comments (0)

Tags: CISSP, CISSP domains, exam, flashcards, guide, PearsonVue, practice test, register, study, study plan, testing, timeline, training, Ultimate guide

23 November 2021

The Best Way to Start Your Cloud Security Career

Where do you begin your journey in InfoSec? What do you need to study? How do you even get started in a vast field with so many areas, and so many opportunities? These questions often haunt a new InfoSec candidate, sometimes causing them to freeze, doing nothing for fear of taking the wrong path. Everywhere you look, it is apparent that cloud computing is not only the future of Information Security, it is happening right now. If you are asking the question of where to begin, there is no better place to look than cloud security. Along with that, while... Read more →

Posted by (ISC)² Management on 23 November 2021 at 08:00 AM in Cloud Security, Cybersecurity Certifications | Permalink | Comments (0)

Tags: CCSP, Certified Cloud Security Professional, Cloud Security, Cloud Security Career, Cloud Training

22 November 2021

Four Cybersecurity Tips Everyone Should Know Before Black Friday and Cyber Monday

According to a new report from Cybereason, 89% of global companies are concerned about repeat cyberattacks ahead of the holiday season, but, surprisingly, only two-thirds have a cyber response plan. Concerns that attackers will strike over the holidays are valid, as cybersecurity researchers have observed a year-over-year uptick in cybercriminal activity on Black Friday through Cyber Monday. The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have previously issued warnings that they’ve observed an “increase in highly impactful ransomware attacks occurring on holidays and weekends.” Furthermore, the volume of ransomware attacks is up significantly. Unit 42, the Palo Alto... Read more →

Posted by (ISC)² Management on 22 November 2021 at 08:00 AM in Cybersecurity Training | Permalink | Comments (0)

Tags: Black Friday, Cyber Monday, cyberattacks, Cybersecurity Tips, holiday safety, holiday shopping safety, shop safe online, supply chain

17 November 2021

Insider Threats Can Turn Your Cloud Security Into a Storm

Insiders can become a real threat to organizations migrating to the cloud because they do not have to breach any external security fences. Insider threats could either come in the form of a human error or as a malicious action. Human errors in cloud security configurations could result in sensitive data and asset disclosure, loss or theft. On the other hand, malicious insiders misuse authorized access to an organization’s cloud assets to overcome security controls and launch their malicious actions. Insiders are a growing risk to cloud security because insider attacks are hard to detect and respond to and they... Read more →

Posted by (ISC)² Management on 17 November 2021 at 08:00 AM in Cloud Security, Cybersecurity Certifications | Permalink | Comments (0)

Tags: CCSP, Certified Cloud Security Professional, Cloud Security, Cloud Training, Insider Threats

16 November 2021

The Importance of Security Control Baselines

For cybersecurity professionals, baseline management is vital because any asset not properly configured can become a security vulnerability. Baselines are fundamental to managing projects of all types and this is especially important in cybersecurity, where everything is a race against time and against very guileful opponents. Although baseline management seems like time-consuming “record keeping,” it is in fact the only way to know where you are, how your assets are operating, what has changed, and what needs to be changed. Not only does this help ensure the safety and security of the assets under your watch, it also helps with... Read more →

Posted by (ISC)² Management on 16 November 2021 at 08:00 AM in Cybersecurity Certifications, Network Security | Permalink | Comments (1)

Tags: CAP, Certified Authorization Professionals, cybersecurity, Security Control Baselines, security process

15 November 2021

Rookies Needed - Experience Required

Are Employer Demands Contributing to the Cybersecurity Skills Gap? You’ve seen the job posting. It starts, “Looking for a cybersecurity specialist. Must have a master’s degree, certifications and 10 years of experience,” followed by, “This is an entry-level position with non-compensated job shadowing requirements.” These unrealistic expectations are the obstacles many cybersecurity professionals face once they complete their studies and rigorous exams. It’s an unfair barrier to entry. Clearly, hiring a person to work in any department in any organization is a risk. It costs money to locate, attract, assess, interview, hire, onboard and train someone, and it’s many months... Read more →

Posted by (ISC)² Management on 15 November 2021 at 08:00 AM in Cloud Security, Cybersecurity Certifications | Permalink | Comments (0)

11 November 2021

CCSP vs. Symantec Certified Cloud Credentials: How Do They Compare?

The mounting cybersecurity challenges facing organizations worldwide show no sign of slowing. Not only the shortage of qualified cybersecurity staff but also the lack of security awareness and skills among employees remain the biggest concerns, according to the 2021 Cloud Security Report by Cybersecurity Insiders. Global need for cybersecurity experts specializing in cloud security is growing demand for certification. But with so many credentials out there, which most effectively demonstrates the broad knowledge and skills required to secure any cloud environment? Let’s compare three leading certifications: (ISC)² Certified Cloud Security Professional (CCSP) vs. Symantec Certified Specialist-Administration of Symantec Cloud Workload... Read more →

Posted by (ISC)² Management on 11 November 2021 at 09:00 AM in Cloud Security, Cybersecurity Certifications | Permalink | Comments (0)

Tags: CCSP, Certified Cloud Security Professional, Cloud Certification, Symantec Certified Cloud Credentials, Symantec CloudSOC