website at www.isc2.org/Membership/Volunteer-Grow
, and find the speaking opportunities that interest you.
Helping at (ISC)2 conferences
(ISC)2 puts on a fantastic annual conference called the (ISC)2 Congress. This conference is an excellent opportunity to learn new topics and meet other infosec professionals. But the conference doesn’t run itself; it’s powered by volunteers! Go to the (ISC)2 Congress website at https://congress.isc2.org
to find information about volunteering.
Reading and contributing to (ISC)2 publications
(ISC)2 publishes quarterly online magazines called InfoSecurity Professional INSIGHTS and Cloud Security INSIGHTS that are associated with InfoSecurity Professional magazine. You can find out more at www.isc2.org/InfoSecurity-Professional/InfoSecurity-Professional-Insights
.
The (ISC)2 Blog is a free online publication for all (ISC)2 members. Find the blog, as well as information about writing articles, at https://blog.isc2.org
.
Supporting the (ISC)2 Center for Cyber Safety and Education
The Center for Cyber Safety and Education, formerly the (ISC)2 Foundation, is a not-for-profit charity formed by (ISC)2 in 2011. The center is a conduit through which security professionals can reach society and empower students, teachers, and the general public to secure their online lives through cybersecurity education and awareness programs in the community. The center was formed to meet those needs and expand altruistic programs, such as Safe and Secure Online, the Information Security Scholarship Program, and industry research (the center’s three core programs). Find out more at www.iamcybersafe.org
.
Participating in bug-bounty programs
As an (ISC)2 member, you can earn CPE credits and contribute to a safer world by participating in Bugcrowd’s bug-bounty programs. You even have a chance to be honored in the organization’s hall of fame. Find out more at www.bugcrowd.com/customers/isc-2
.
Participating in (ISC)2 focus groups
(ISC)2 has developed focus groups and quality-assurance testing opportunities. (ISC)2 is developing new services, and it needs to receive early feedback during the requirements and design phases of its projects. Participating in these groups and tests can influence future (ISC)2 services that will aid current and future certification holders. (ISC)2 doesn’t have a web page dedicated to this topic; you’ll be notified of opportunities by email.
Joining the (ISC)2 community
(ISC)2 has developed a new interactive community that’s full of discussion groups. With more than 16,000 members in the first year, the community is well designed and easy to use. The community has more resources than we can list here! You can sign up and join discussions at https://community.isc2.org
.
Getting involved with a CISSP study group
Many communities have CISSP study groups that consist of volunteer mentors and instructors who help those who want to earn the certification.
If your community doesn’t have a CISSP study group, consider starting one. Many communities have them already, and the organizers can give you advice on starting your own. You can find out more from nearby (ISC)2 chapters and other local security groups, or visit https://community.isc2.org/t5/Study-Groups/ct-p/CertificationStudyGroups
to find a group near you.
Helping others learn more about data security
In no way are we being vain or arrogant when we say that we (the writers of this book and you, the readers) know more about data security and safe Internet use than perhaps 99 percent of the general population, for two main reasons:
Security is our profession.
Security is not always easy to do.
A legion of volunteer opportunities is available to help others keep their computers (and mobile computing devices) secure and use the Internet safely. Here is a concise list of places where you can help:
Service clubs
Senior centersWHY VOLUNTEER?Why should you consider volunteering for (ISC)2 or for any other professional organization? Here are two main reasons:Volunteerism of any kind is about giving back to a larger community. Consider the volunteers who helped you earn your CISSP certification. There are many of them, but they aren’t always visible.Volunteering looks good on your résumé. We consider this fact to be a byproduct of volunteering, not the primary reason for it.Volunteering for (ISC)2 or any other cause should be a reflection of your character, not simply an activity to embellish your résumé. Although your intention in volunteering may be to help others, volunteering will also change you — for the better.Consider it a good idea to periodically check the (ISC)2 website for other ways you can help.
Schools (be sure to read about Safe and Secure Online earlier in this chapter)
Alumni associations and groups
Your place of employment
Using a little imagination, you can undoubtedly come up with additional opportunities. The world is hungry for the information you possess!
Becoming an Active Member of Your Local Security Chapter
In addition to (ISC)2, many security organizations worldwide have local chapters, perhaps in or near your community. Here’s a short list of some organizations that you may be interested in:
International Systems Security Association (ISSA): www.issa.org
ISACA: www.isaca.org
Society for Information Management (SIM): www.simnet.org
InfraGard: www.infragard.net
Open Web Application Security Project (OWASP): https://owasp.org
ASIS International: www.asisonline.org
High Technology Crime Investigation Association (HTCIA): https://htcia.org