Successful candidates will gain the necessary knowledge to understand the philosophies and driving forces behind the creation of the Critical Security Controls, their scope, and how these controls can be used to prioritize information security controls based on community risk assessment efforts. Candidates will understand how the Critical Security Controls relate to other information assurance standards (such as ISO 27000, NIST 800-53, the NIST Core Framework, and others) and how the controls can be used to meet the goals of those standards. GCCC holders will be able to make a practical difference in the security posture of any organization.
The Critical Security Controls are an effective and recognized security framework because they were vetted by, and reflect the strong consensus of, a broad community of security professionals spanning both government and industry. They were derived from analyses of the most common attack patterns regularly launched against actual networks. The Controls embody a "must do first" philosophy, prioritize specific high-payoff activities, and can serve as the basis for immediate high-value action.
CISOs, CIOs, IGs, systems administrators, and information security personnel can use the Controls as a specific guideline to manage and measure the effectiveness of their defenses. The Controls are designed to complement existing standards, frameworks, and compliance schemes by prioritizing the most critical threat and highest payoff defenses, while providing a common baseline for action against risks that we all face.
"We regularly encounter security practitioners utilizing the Critical Security Controls, but without a full understanding of the philosophies and ultimate goals of the project. The GCCC validates that a person truly understands the philosophies behind implementing and assessing an organization based on the controls," says
The course was created for security practitioners, auditors and managers of all levels by SANS Certified Instructors, who are real-world security practitioners and subject-matter experts that design and provide the hands-on, immersive training you need to keep your organization secure. Security practitioners will learn how to stop a threat, why the threat exists, and how to ensure that security measures deployed today will be effective against the next generation of threats.
The Critical Controls course shows security professionals how to implement the controls in an existing network through cost-effective automation. For auditors, CIOs, and risk officers, the course is the best way to understand how you will measure whether the Controls are effectively implemented.
GIAC now provides the means to certify cyber security professionals in this critical element of cyber defense. The GCCC exam will be released
Keywords for this news article include: Information Technology, Information and Data Security, Global Information Assurance Certification GIAC, Global Information Assurance Certification (GIAC).
Our reports deliver fact-based news of research and discoveries from around the world. Copyright 2014, NewsRx LLC
Most Popular Stories
- Cantwell Targets Gender Gap in Small-Business Loans
- Chrysler Gets Nod as a Top Employer for Hispanic Women
- Hispanic Entrepreneurs Set Pace in Florida
- Perry's Lawyers Try to Close Abuse Case
- South Korea's Kia to Invest $1 Billion in Mexico
- FBI Probes JPMorgan Hack
- What's the Law for Kids at Gun Ranges?
- Apple Loses Bid to Block Sales of 9 Samsung Phones
- Mario Lopez Inks New Clear Channel Deal
- Health-care Deal Aids Port Contract Talks