Information Security Management
Certified Professional (ISMCP)
Description
The ISMCP certification is recognized as one of the highest-level credentials available for information security professionals. The ISMCP certification has been designed particularly for administrators, consultants, auditors and IT managers, with information security oversight responsibilities as part of their day-to-day role, as well as for professionals aspiring to higher management positions in information security.
The exam is proctored, real time, closed book, web-based and has 40 items to be completed in 60 minutes. The minimum passing score is 60 out of 100.
Examination cost:FREE The examination is free. The certification will be recorded in the online personal transcript and will be publicly visible one month FOR FREE. During this time, you may choose to acquire the Certification Package.
Certification Package: $50 US The Certification Package includes:
- 5 years certification maintenance in the online transcript
- the paper certificate
- the printed official transcript
- usage rights for certification logo
Information Security Administration
- basics of information security administration
- data classification
- security policy design and implementation
- information security control types
- incident and disaster recovery
Applications and Databases Security
- basics of applications and databases security
- application design practices and errors
- threats to application security
Computing Systems Security
- basics of computing systems security
- workstations security
- handheld devices security
- servers security
- operating systems security
Cryptography
- simple ciphers
- symmetric stream and block ciphers
- public key ciphers and digital signature schemes
- hybrid cryptosystems
Communication Systems Security
- basics of communication security
- wired&wireless networks security
- virtual private networks
- network security protocols and remote access
- firewalls
- attacks to data networks and appropriate defenses
- data networks availability and disaster recovery
- digital voice communication security
Access Control
- basics of access control
- access types and methods
- multilevel security models
- knowledge-based identification & authentication
- biometrics-based identification & authentication
- single sign-on identification & authentication
- token based identification & authentication
- intrusion prevention, threats and detection
Study/Training Materials
In preparation for the exam, the following recommended study materials may be reviewed to build knowledge in certain topics:
Information Security Architecture: An Integrated Approach to Security in the Organization
by Jan Killmeyer |
Publisher: Auerbach Publications, 2006 / ISBN: 0849315492
Information Security Based on ISO 27001/ISO 17799: A Management Guide
by Alan Calder, Jan Van Bon, Van Haren | Publisher: Van Haren Publishing, 2006 / ISBN: 9077212701
Applied Cryptography: Protocols, Algorithms, and Source Code in C
by Bruce Schneier |
Publisher: Wiley, 1996 / ISBN: 0471117099
Information Security: Principles and Practice
by Mark Stamp |
Publisher: Wiley-Interscience, 2006 / ISBN: 0471738484
Competencies This certification validates the competencies in designing and monitoring information security policies and standards, developing practical risk assessment procedures, monitoring internal control systems, supervising incident and disaster recovery procedures, ensuring an efficient management of computing systems security, communication systems security, applications and databases security and performing information security audits of various systems and applications.
Job positions
An ISMCP certified professional may apply for jobs such as Senior Information Security Consultant, Information Security Auditor/Evaluator, Information Security Supervisor, or Information Security Manager, IT Manager.
