Peter H. Gregory

CISSP For Dummies


Скачать книгу

website at www.isc2.org/Membership/Volunteer-Grow, and find the speaking opportunities that interest you.

      Tip If you speak at an (ISC)2 Congress, your conference fees are waived. You need to pay only for transportation, lodging, and meals.

      Helping at (ISC)2 conferences

      (ISC)2 puts on a fantastic annual conference called the (ISC)2 Congress. This conference is an excellent opportunity to learn new topics and meet other infosec professionals. But the conference doesn’t run itself; it’s powered by volunteers! Go to the (ISC)2 Congress website at https://congress.isc2.org to find information about volunteering.

      Reading and contributing to (ISC)2 publications

      (ISC)2 publishes quarterly online magazines called InfoSecurity Professional INSIGHTS and Cloud Security INSIGHTS that are associated with InfoSecurity Professional magazine. You can find out more at www.isc2.org/InfoSecurity-Professional/InfoSecurity-Professional-Insights.

      The (ISC)2 Blog is a free online publication for all (ISC)2 members. Find the blog, as well as information about writing articles, at https://blog.isc2.org.

      Supporting the (ISC)2 Center for Cyber Safety and Education

      The Center for Cyber Safety and Education, formerly the (ISC)2 Foundation, is a not-for-profit charity formed by (ISC)2 in 2011. The center is a conduit through which security professionals can reach society and empower students, teachers, and the general public to secure their online lives through cybersecurity education and awareness programs in the community. The center was formed to meet those needs and expand altruistic programs, such as Safe and Secure Online, the Information Security Scholarship Program, and industry research (the center’s three core programs). Find out more at www.iamcybersafe.org.

      Participating in bug-bounty programs

      As an (ISC)2 member, you can earn CPE credits and contribute to a safer world by participating in Bugcrowd’s bug-bounty programs. You even have a chance to be honored in the organization’s hall of fame. Find out more at www.bugcrowd.com/customers/isc-2.

      Participating in (ISC)2 focus groups

      (ISC)2 has developed focus groups and quality-assurance testing opportunities. (ISC)2 is developing new services, and it needs to receive early feedback during the requirements and design phases of its projects. Participating in these groups and tests can influence future (ISC)2 services that will aid current and future certification holders. (ISC)2 doesn’t have a web page dedicated to this topic; you’ll be notified of opportunities by email.

      Joining the (ISC)2 community

      (ISC)2 has developed a new interactive community that’s full of discussion groups. With more than 16,000 members in the first year, the community is well designed and easy to use. The community has more resources than we can list here! You can sign up and join discussions at https://community.isc2.org.

      Getting involved with a CISSP study group

      Many communities have CISSP study groups that consist of volunteer mentors and instructors who help those who want to earn the certification.

      Helping others learn more about data security

      In no way are we being vain or arrogant when we say that we (the writers of this book and you, the readers) know more about data security and safe Internet use than perhaps 99 percent of the general population, for two main reasons:

       Security is our profession.

       Security is not always easy to do.

      A legion of volunteer opportunities is available to help others keep their computers (and mobile computing devices) secure and use the Internet safely. Here is a concise list of places where you can help:

       Service clubs

       Senior centersWHY VOLUNTEER?Why should you consider volunteering for (ISC)2 or for any other professional organization? Here are two main reasons:Volunteerism of any kind is about giving back to a larger community. Consider the volunteers who helped you earn your CISSP certification. There are many of them, but they aren’t always visible.Volunteering looks good on your résumé. We consider this fact to be a byproduct of volunteering, not the primary reason for it.Volunteering for (ISC)2 or any other cause should be a reflection of your character, not simply an activity to embellish your résumé. Although your intention in volunteering may be to help others, volunteering will also change you — for the better.Consider it a good idea to periodically check the (ISC)2 website for other ways you can help.

       Schools (be sure to read about Safe and Secure Online earlier in this chapter)

       Alumni associations and groups

       Your place of employment

      Using a little imagination, you can undoubtedly come up with additional opportunities. The world is hungry for the information you possess!

      In addition to (ISC)2, many security organizations worldwide have local chapters, perhaps in or near your community. Here’s a short list of some organizations that you may be interested in:

       International Systems Security Association (ISSA): www.issa.org

       ISACA: www.isaca.org

       Society for Information Management (SIM): www.simnet.org

       InfraGard: www.infragard.net

       Open Web Application Security Project (OWASP): https://owasp.org

       ASIS International: www.asisonline.org

       High Technology Crime Investigation Association (HTCIA): https://htcia.org