December 5, 2024

DVMS Institute

The DVMS Institute teaches organizations of any size, scale, or complexity an Affordable and Scalable way to Operationalize a DVMS NIST Cybersecurity Framework Overlay System capable of Assuring Digital Business Protection, Performance, Resilience and Trust.

It offers a free training video to help individuals understand the critical differences between NIST Cybersecurity Framework versions 1.1 and 2.0. This video training is your starting point to understand how the NIST Cybersecurity Framework 2.0 will help your organization begin its journey to create a culture capable of mitigating digital risk to protect organizational digital business performance, resilience, and trust.

GIAC – Global Information Assurance Certification

Enterprise security isn't just the responsibility of an organization's cybersecurity professionals. Keeping the business secure requires input from all levels of leadership. Managers need technical knowledge as well as traditional management skills to be effective leaders for their infosec teams. GIAC's Management certifications confirm the practical skills to build and lead security teams, communicate with both technical teams and business leaders, and develop capabilities that strengthen your organization's security posture. GIAC Cybersecurity Leadership Certifications include:

  • GSTRT: GIAC Strategic Planning, Policy, and Leadership
  • GSLC: GIAC Security Leadership Certification
  • GCCC: GIAC Critical Controls Certification
  • GCPM: GIAC Certified Project Manager
  • GLEG: GIAC Law of Data Security & Investigations
  • GSOM: GIAC Security Operations Manager Certification
  • GSNA: GIAC Systems and Network Auditor Certification
  • GISP: GIAC Information Security Professional Certification

GRC Academy

GRC Academy provides training resources around NIST, ISO and CMMC standards and regulations.

ISACA

The organization offers certifications in CISA, CGEIT, CRISC and CISM: Certified Information Security Manager. Like CompTIA and CISSP, CISM was named to KnowledgeNet’s list of Top Ten Cyber Security Certifications for 2018.

ISACA GRC Certifications

  • CISA - Certified Information Systems Auditor® (CISA®), world-renowned as the standard of achievement for auditing, monitoring, and assessing IT and business systems, also acknowledges the importance of emerging technologies. Achieving a CISA certification showcases your expertise and asserts your ability to apply a risk-based approach to audit engagements. Addressing innovations like AI and blockchain, CISA ensures that IT audit professionals stay current on the latest technology trends and advancements.
  • CISM - ISACA’s Certified Information Security Manager® certification indicates expertise in information security governance, program development and management, incident management and risk management. If you are a mid to advanced-career IT professional aspiring to senior management roles in IT security and control, CISM can get you the visibility you need.
  • CRISC - ISACA’s Certified in Risk and Information Systems Control™ certification indicates expertise in identifying and managing enterprise IT risk and implementing and maintaining information systems controls. You’ll gain instant recognition and credibility with CRISC and boost your career. If you are a mid to advanced-career IT professional with a focus on IT and cyber risk and control, CRISC can get you the leverage you need to grow in your career.
  • CDPSE - Modern privacy laws and regulations require organizations to implement privacy by design and by default into IT systems, networks, and applications. To do so, privacy professionals must partner with software developers, system and network engineers, application and database administrators, and project managers to build data privacy and protection measures into new and existing technology environments. Certified Data Privacy Solutions Engineer™ (CDPSE®) is focused on validating the technical skills and knowledge it takes to assess, build and implement comprehensive data privacy measures. CDPSE holders help fill the technical privacy skills gap so that your organization has competent privacy technologists to build and implement solutions that mitigate risk and enhance efficiency.
  • CGEIT - ISACA's Certified in the Governance of Enterprise IT® is unique and framework agnostic. It is the only IT governance certification that can give you the mindset to assess, design, implement and manage enterprise IT governance systems aligned with overall business goals. You’ll gain visibility at the executive level with CGEIT.
  • (ISC)²

    (ISC)² offers a large number of information security certifications. Their banner certification is the globally-recognized  href="https://www.isc2.org/Certifications/CISSP" target="_blank">CISSP: Certified Information Systems Security Professional.

    CISSP holders work as security managers, directors of security, network architects, security analysts – pretty much anyone in a senior management position. The program covers 10 domains, including:

  • Domain 1: Security and Risk Management
  • Domain 2: Asset Security
  • Domain 3: Security Architecture and Engineering
  • Domain 4: Communication and Network Security
  • Domain 5: Identity and Access Management (IAM)
  • Domain 6: Security Assessment and Testing
  • Domain 7: Security Operations
  • Domain 8: Software Development Security
  • (ISC)² also offers the CGRC: Certified Information Systems Security Professional.

    Capitalize on the rising demand for Governance, Risk and Compliance (GRC) expertise by earning the CGRC certification. The CGRC is a proven way to demonstrate your knowledge and skills to integrate governance, performance management, risk management and regulatory compliance within your organization. CGRC professionals utilize frameworks to integrate security and privacy within organizational objectives, better enabling stakeholders to make informed decisions regarding data security, compliance, supply chain risk management and more. The program covers 7 domains, including:

  • Domain 1: Security and Privacy Governance, Risk Management, and Compliance Program
  • Domain 2: Scope of the System
  • Domain 3: Selection and Approval of Framework, Security, and Privacy Controls
  • Domain 4: Implementation of Security and Privacy Controls
  • Domain 5: Assessment/Audit of Security and Privacy Controls
  • Domain 6: System Compliance
  • Domain 7: Compliance Maintenance
  • ISSA

    The Information Systems Security Association International (ISSA) sponsors leadership training, mentoring, and networking programs for all cybersecurity professionals. It has a special interest group for women who strive to enhance their knowledge of cybersecurity as a whole and promotes the involvement of women in the field.

    NICCS – National Initiative for Cybersecurity Careers and Studies

    Cyber Career Pathways Tool

    CISA released the Cyber Career Pathways Tool, which is designed for individuals looking to start a career in cybersecurity, considering a change within the cyber field, college students, managers, and workforce development specialists interested in the cyber ecosystem.

    This tool will help individuals identify, build, and navigate a potential cyber career pathway by increasing understanding of the knowledge, skills, and abilities needed to begin, transition, or advance a cyber career.

    OCEG

    OCEG provides an interconnected suite of certifications that span all of the critical disciplines including governance, strategy, risk, compliance, security and audit.

    Women in Defense (WID)

    Incorporated in 1985 and an affiliate of the National Defense Industrial Association (NDIA), cultivates and supports the advancement and recognition of women in all aspects of national security — including cybersecurity. The WID Annual National Conference features keynote speakers from NASA, NSA, DHS, CyberCom and StratCom.

    Women in Security and Privacy (WISP)

    WISP promotes the development, advancement, and inclusion of women in the cybersecurity field. WISP’s calendar is an excellent resource providing a list of their own innovative events alongside other women in cyber events, and various security and hacker conferences in the U.S.

    Women Leading Privacy

    Women Leading Privacy is a space for women cybersecurity professional to give and get career support, to help advance women in the field, and to expand their personal and professional networks

    Women’s Society of Cyberjutsu (WSC)

    WSC is a non-profit for women in cyber. Cyberjutsu sounds like a martial art — and Jiggets is a 10th-degree black belt with credentials that include MBA, CISSP, ECSA, C|EH, SCNP, MCSE, CCNA, SCSA, Network+, and A+. Her organization provides training, networking, mentorship, and a job board.

    Get in touch

    Join our movement to build the next generation of cybersecurity professionals!