Security Basics mailing list archives

RE: IT Manager to CISO


From: "David Gillett" <gillettdavid () fhda edu>
Date: Thu, 28 Apr 2011 09:26:55 -0700

  Titles that begin with "C" and end with "O" don't, even in
technology-focused companies, call for technical/practitioner
certifications.  They DO call for clear understanding about how the
decisions you make impact the business.  So while Security+ is a fine cert
and enjoyable if you're into InfoSec, CISSP is a much better fit for your
role.

David Gillett (CISSP, CCNP, MCSE, etc)

-----Original Message-----
From: olufemimogaji () gmail com [mailto:olufemimogaji () gmail com]
Sent: Wednesday, April 27, 2011 01:37
To: security-basics () securityfocus com
Subject: IT Manager to CISO


Hi all,

I'm currently the de facto IT manager for a small IT services firm. The
nature of our business requires that we follow PCI standards as per logical
security. Here's the thing, the CISO is leaving next month, and I've been
told I'll be taking his position. I already have a lot of exposure to info
sec, I have a CCNP (the former version with ISCW) and a I'm an MCP (Active
Directory for WS 2008). What I need to know is what cert I should go out
there and get to make me more cemented in this new CISO role, at least to
keep the auditors happy, as they sometimes like to question your competence.
The outgoing CISO, even though he was trained by some of our partners, had
NO certs, and this exposed him to uncomfy questions from hard nosed
auditors. Security+ or CISSP exam? Or any others? Any form of guiding light
will be highly appreciated.

Regards,

Femi M.




Sent from my BlackBerryR Smartphone



Sent from my BlackBerryR Smartphone



------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------


Current thread: