certificate of p>it management < p p> 1.CISA-- auditor of international information systems
CISA has become an indispensable certification for individuals and companies around the world. CISA qualification certificate represents the holder's excellent ability to serve the company and devote himself to the fields of information system audit, control and security. Possession of CISA qualification certificate is the demonstration of the professional ability of the holder and becomes the basis for measuring the professional level. With the increasing demand for information system auditing, control and security professionals,
Establish institutions:
The Information System Auditing and Control Association (ISACA) was founded in 1967. At that time, it was a small group of people engaged in similar occupations-the auditing and control of computer systems became more and more critical to the operation of their respective institutions-so they gathered to discuss the necessity of formulating centralized information resources and guidelines in this field. In 1969, this group was formally established as the EDP Institute of Auditors. In 1976, the association set up an education fund to carry out large-scale research work to expand the knowledge and value in the field of information industry management and control.
examination core content
information system audit program (1%)
IT governance (15%)
system and infrastructure life cycle management (16%)
IT service delivery and support (14%)
protection of information assets (31%)
disaster recovery and recovery.
2. CET-4 or above is recommended;
3. Have certain audit knowledge and computer knowledge (basic computer knowledge, operating system, network, database, e-commerce, etc.).
Exam method and time
Bilingual (English and Chinese exams), 2 objective multiple-choice questions, all written answers, and the exam time * * * is 4 hours. CISA organizes an exam in June and December every year.
Validity:
Certificate is valid for 5 years
Textbooks and
References:
Textbook: CISA Review Manual,26 ISACA (English Textbook)
Information System Audit Practice Manual, 26, CISACA (Chinese textbook)
cisa examination textbooks, volumn1: theory, 3rd edition, SRV
Exercise: cisa review questions, answers &; Explanations, CD-ROM 26 ISACA
CISA Review Questions, Answers & Explanations Manual (625 Questions) 26
CISA Review Questions, Answers & Explanations Manual (1 Questions), 26 Supplement
CISA Examination Textbooks,Volumn 2: Practice, 3rd Edition, SRV
2. CISM-Registered Information Security Manager
CISM, as a new generation of golden collar professional certification released by ISACA/F, aims to turn professionals who undertake information security management responsibilities into senior information security management experts. In 23, the examination was first held all over the world. Up to now, thousands of people have obtained the certificate of Certified Information Security Manager "5"
The necessary conditions for obtaining CISM:
Successfully passing CISM certification examination
Abiding by professional ethics
Submitting evidence to prove that they have reached the required minimum years of information security work experience (generally, two years of work experience can be achieved through CISA);
registration fee: USD 455 (registered before February 2nd) or USD 55 (registered before March 3th). The registration fee for this website is 396 yuan and 44 yuan respectively.
test paper language: English, Japanese (choose one)
test type: 2 channels (choose one more). Multiple choice questions
Examination date: June and December every year
CISM examination scope
Information security control
Risk management
Information security plan management
Information security management
Rapid response management
Reference materials (updated CISM Review Manual 26
CISM Review is available every year. Explanations Manual 26
CISM Review Questions, Answers & Explanations Manual 25
continuing education plan? :
In order to become and maintain CISM, individuals must follow CISM's continuing education plan. The plan requires that the annual follow-up education time should not be less than 2 hours; Moreover, it should not be less than 12 hours in three years.
3. cissp-information system security certification professional
cissp (certified information system security certification professional) is recognized as the most difficult and authoritative test in network information security certification. CISSP can prove that the certificate holder has the knowledge level and experience ability of information security that meets the requirements of international standards, and it is also the proof basis for enterprises and organizations to find professionals. At present, job descriptions of many multinational companies have clearly required candidates to have CISSP and other related qualifications. At present, the number of CISSP in China is only over 2.
certification qualification:
1. You must have at least 4 years of safety experience, and only 3 years of experience if you have a bachelor's degree.
The definition of experience is: working in one or more of the 1 CBK fields with paid safety professional.
Login control system and methodology
Application and system development
Business continuity plan
Cryptography
Law, research and standardize
Operational security
Physical security
Security architecture and model
Security management practice
Communication, Network and Inter security
2. You must agree to abide by the code of ethics
* Protect society, all citizens and national infrastructure (the monwealth, And the infrastructure)
* with honest, upright, just and legal behavior (act honorably, honestly, justly, responsibly, And legally)
* Provide diligent and competent service to employers
* Develop and maintain expert status and honor (Advance and protect the profession).
3. Re-certification or continuing education
You must continue your education and get 12 Continuing Professional Education (CPE) credit points within 3 years, otherwise you must take the exam again before you can continue to retain the qualification of CISSP. Two-thirds (8 points) of the credit score must be obtained by direct participation in relevant safety work, and the other one-third (4 points) can be obtained through relevant safety education or training. In order to strengthen the professional knowledge, skills and competitive advantage of certificate holders.
registration fee: the official quotation is USD 45 (registered 16 days in advance) and USD 55 (not registered in advance). Domestic agent center 415 yuan
Reference:
The CISSP Prep Guide.
the cissp prep guide: mastering the ten domains of computer security
CISSP ALL-in-One
Examination method:
English, 25 questions, 6 hours to complete
4.ITIL certification system
ITIL certification system
ITIL certification system is jointly operated by four international authoritative organizations to ensure that this certificate is professional, open, authoritative, practical, widely accepted and constantly updated. The four executing agencies are:
1. OGC, the Ministry of Commerce of the United Kingdom, is the owner of ITIL, the de facto international standard in the field of IT service management, and all the ownership of ITIL belongs to OGC. OGC is responsible for the development of ITIL curriculum system and constantly proposes updates. Constantly integrating the best practices of global IT development, OGC nominates and selects other organizations or experts to compile, and at the same time organizes relevant experts from all over the world to review these manuscripts to ensure their quality. But OGC itself is not involved in ITIL training and certification.
2. ITSMF(IT Service Management Forum) is the largest IT service management user organization in the world, dedicated to developing and promoting the best practice standards and certification of IT service management. ITSMF is the only recognized IT service management industry organization in the world, and has established more than 16 national branches all over the world.
3. Exin (Examination Institute for Information Science), headquartered in the Netherlands, provides ITIL examinations in various languages around the world.
4. ISEB (Information Systems Examination Board), headquartered in the UK, has great influence in Commonwealth countries and is responsible for providing English examinations.
ITIL certification is mainly issued by EXIN and ISEB, which use the same test paper and have the same authority. In addition to providing their own examinations, EXIN and ISEB have authorized many specialized examination and training institutions all over the world, but ITIL qualification certificates are uniformly issued by EXIN and ISEB, and the certificates are universal. The ITIL certificates issued by EXIN and ISEB are divided into three levels:
ITIL Foundation (Foundation Certificate in IT Service Management) is aimed at personnel engaged in IT service management, and requires them to understand the importance of IT service management and IT infrastructure, master the processes and interfaces of service management, the basic concepts of ITIL, the top ten processes in ITIL and the relationship between them. ITIL Foundation is the basis for obtaining the other two certificates, and it is the core basic authentication for IIIL beginners. The examination is in the form of multiple-choice questions, which requires a basic understanding of the ten processes of IT service support and delivery, a Service Desk function and their relationship; IT is suitable for the supervisors or equivalent personnel of the IT organization to participate. If you only want to pass the certification of ITIL Foundation, training is not necessary, but EXIN and ISEB still recommend you to participate in the training, because you can master the knowledge faster through training and better understand the essence of ITIL through the lecturer's explanation. The ITIL Foundation exam has 4 multiple-choice questions, which should be completed within one hour. At present, there are no Chinese test papers for ITIL certification, all of which are English test papers. For the ITIL Foundation exam, you only need to score 65 or above (that is, at least 26 out of 4 questions are answered correctly) to pass the exam and obtain the ITIL Foundation Certificate.
ITIL Practitioner (Practitioner's Certificate in IT Service Management) This certification is aimed at the personnel engaged in the specific process of IT service management and requires them to have certain practical experience. The personnel who have obtained this certificate can record, maintain and improve the processes they are engaged in. Understand the process of ITIL deeply, and learn to design and implement the process; Suitable for people who focus on specific processes. You can choose one of the nine exams of Practitioner certification as the certification of the specific process of IT service management you are engaged in. The exam takes 2 hours to complete and consists of multiple-choice questions and questions.
ITil manager (manager's certificate in it service management) This certification is aimed at higher-level IT service management personnel, such as IT service management managers and consultants, especially those who are responsible for or provide suggestions for ITIL implementation. EXIN and ISEB require that candidates must undergo professional training from ITIL certification training institutions. Through two 3-hour written tests and interviews, participants are required to deeply understand the ten processes of IT service support and delivery and a Service Desk function, and master the implementation of ITIL; Suitable for senior staff who are responsible for implementing or managing the ITSM functions of the organization. In addition to the training exam, those who participate in the manager certification will have to add 3 hours of thesis defense. ITIL Service Manager’s Certificate