Hi,
I'm currently studying to get the ISO 27001 Lead Auditor certification, and in about 6 months I'll be going for the CISA. However, with my M.Sc. being in security AND forensics, I'd like to get a certification for that as well - seeing as my diploma apparently isn't enough to land me any forensics gigs…
I've been reading about the CCE and I have to admit it's tempting. But I also really like the ISO-take on things. So my question is this Are there any ISO standards for forensics and/or incident response? If so, are there any certifications to go with this standard?
Or maybe someone knows about some other certifications worth looking into? Comments, advice and links are very welcome.
-Stigster!
Ive just done the CCE exam and now im on to the other modules.
Personally I can totally recomend the CCE it shows that you can perform.
Another point is that it is not a "software" cert. Years ago I did an MCP and thought what a total waste of money im just giving microsoft more, all i did was read a book and passed lol.
Regards
Yeah, like I mentioned, the CCE is tempting. But it's a question of time and priorities. How much work does this exam involve? Including the tests/"homework"-parts? Is there an estimate or maybe a ballpark-type estimate?
-Stigster!
The actual CCE examination has 75 questions with a 45 minute time limit and is conducted on a secure site. You then have 90 days to complete the forensic examination of a floppy diskette, the forensic examination of a CDR disk and the forensic examination of an image of a hard disk drive.