Chapter 14: Information Security Professional Certifications

A vendor-neutral certification is better than a vendor-specific certification. A. True B. False

False

Which is the purpose of a job task analysis? A. Identify pertinent skills B. Define the required knowledge C. Determine the amount of experience required D. To ensure that the job description is defensible in court E. All of the above

All of the above

Which of the following is true about the CompTIA Security+ certification? A. Globally recognized B. Entry-level foundational certification C. Requires a thorough understanding of security terms and definitions D. Approved by the DoD for foundational,entry-level information systems security training E. All of the above

All of the above

The ______ professional certification is specific to performing an information systems audit. A. CISSP B. CISA C. GSEC D. CCNA E. None of the above

CISA

The __________ Specialist and Professional certifications require that you hold one or more certifications from an approved vendor.

CIW

Which (ISC)2 certification specifically addresses developing secure software? A. CISSP B. CSSLP C. GSEC D. CISA E. None of the above

CSSLP

Which network device manufacturer offers certifications in five levels: entry, associate, professional, expert, and architect? A. Cisco Systems B. Check Point C. Juniper Networks D. Symantec E. None of the above

Cisco Systems

Which certification is the highest level GIAC credential? A. CAP B. GSEC C. GCIH D. GSE E. None of the above

GSE

What is the main purpose of DoD Directive 8570? A. It requires that the DoD workforce including contractors have a minimum level of training and certifications to perform their job duties. B. It requires personnel to acquire security training. C. It requires personnel to acquire security certifications. D. It requires DoD facilities and contractors to provide security training. E. It requires DoD facilities and contractors to enforce security policies.

It requires that the DoD workforce including contractors have a minimum level of training and certifications to perform their job duties.

Which ISACA certification applies to security auditors? A. CISSP B. SSCP C. GSEC D. CCNA E. None of the above

None of the above

Which (ISC)2 certification covers seven domains of security for practitioners? A. CISM B. CCNA C. SSCP D. GSEC E. None of the above

SSCP

Which CompTIA certification targets foundational security topics? A. Security+ B. TIA practitioner C. TIA+ D. InfoSec practitioner E. None of the above

Security+

Which vendor offers separate certifications for its products in UNIX and Windows environments? A. Cisco B. Check Point C. Juniper Networks D. Symantec E. None of the above

Symantec

A certification is an official statement validating that a person has satisfied specific requirements. A. True B. False

True

Having a certification does not guarantee your level of competency in performing a job task or job function. A. True B. False

True