Information Security Professional Certification
The Information Security Professional (ISP) certification is based on NIST Special Publication 800-53, Revision 4 (800-53 Rev4). 800-53 Rev4 provides a more holistic approach to information security and risk management by providing organizations with the breadth and depth of security controls necessary to fundamentally strengthen their information systems and the environments in which those systems operate. This contributes to systems that are more resilient in the face of cyber attacks and other threats.
800-53 Rev4 provides a catalog of security and privacy controls for information systems and organizations. It also provides a process for selecting controls to protect organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations from a diverse set of threats including hostile cyber attacks, natural disasters, structural failures, and human errors.
The controls are customizable and implemented as part of an organization-wide process that manages information security and privacy risk. 800-53 Rev4 also describes how to develop specialized sets of controls, or overlays, tailored for specific types of missions/business functions, technologies, or environments of operation.
800-53 Rev4 addresses security from both a functionality perspective (the strength of security functions and mechanisms provided) and an assurance perspective (the measures of confidence in the implemented security capability). Addressing both security functionality and security assurance ensures that information technology products and the information systems built from those products using sound systems and security-engineering principles are sufficiently trustworthy.
Eligibility: Graduate from any field
Admission: At any time
Exam: Online at any time within 12 months from approval of application
Certified by: Gujarat Forensic Sciences University
Fees: Rs. 5,700 (students) / Rs. 11,200 (others)
|Security control structure, organization, baselines and assurance|
|Selection and specification of security controls|
|Security Control Baselines|
|Security Controls under 800-53 Rev4|
|Framework for Improving Critical Infrastructure Cybersecurity|
© 2011-2018 Lexcode Regulatory Compliance Technologies Pvt Ltd.