CompTIA Adds New Material to Security+

News in Information Technology Security:

On October 13th CompTIA announced that it is adding new material to the Security+. Much of the Security+ material from the test of the past couple of years will remain. The new 2008 version of the exam adds new questions that are based around knowing how to react to and handle specific security issues and breaches. The previous Security+ exam is more based on simply being able to recognize these issues. The new exam covers six major objective areas: Network Infrastructure, Systems Security, Cryptography, Access Control, Assessments and Audits, and Organizational Security.

This change greatly affects those federal employees and government contractor employees who fall under the requirement of the DoD Directive 8570 who are obligated to achieve the Security+ Certification. Now, those who had prepared for the older version of the test are going to need some additional study time.

*Read CompTIA's Press Relese Here*

CompTIA Makes Changes to the Network+ Certification

CompTIA has just recently announced that in January of 2009 they will be significantly changing the Network+ Certification Exam. Objectives on this exam have been the same for quite some time, although the exam still maintains a deep respect in the IT industry and in Networking / Network Administration. In spite of the certification's long valued weight and substantial respect the objective changes are definitely overdue.

Network+ has always been a certification that maintains usefulness mainly because it provides the base knowledge for anyone interested in networks - and that is general on purpose. Local area network admins or those who wish to be routing and switching professionals all need the fundamentals of the Network+.

The changes to the CompTIA Network+ for 2009 are too numerous to list or mention. Lightly stated, they en capsule the more recent developments and upgrades in networking hardware and software.

To learn more about the changes in the cert, I recommend turning to the words of the foremost Network+ professional - Mike Meyers. Listen to his podcast about these changes here.

The exam can still be taken at Prometric or Pearson Vue Testing Facilities everywhere.

Catch the Hacker!

In this world of constant security threats it's unsettling to know that almost all of our important information is completely vulnerable. Network intrusion is a constant problem. Identities are stolen all the time because we voluntarily (yet often unknowingly) place our personal information all over the internet in highly accessible places. Identity thieves and on-line criminals have a seemingly easier time finding out the information they need to commit their internet crimes.

If you have ever taken a Certified Ethical Hacker (CEH) class you were made aware of the reality of these dangers. You openly watched secret information, that people may have deemed secure, become as public as the daily news through a couple of simple steps and some basic hacking / exploit software. The class opens your eyes to the dangers of information on the web and on networks.

However, because more trouble is being caused by these internet thieves, do-gooders and government agencies / regulators are also seeking ways to combat against them. EC-Council's intent with the CEH class is to make people aware of how hacking is performed so that intrusion vulnerability can be counteracted. But EC-Council is taking counteraction a step further. They have created a class that is gaining in popularity by the day in the CHFI.

The Computer Hacking Forensics Investigator (CHFI) by the EC-Council is a class that teaches people how to trace or track the hackers and collect the evidence along the way to hopefully prosecute that crime. Different from the CEH where students are shown how to hack so that preventative measures can be installed, the CHFI retraces the steps and goes after the bad guys to help take them down.

At this point, the popularity of this certification is not where I would like to see it. I believe that as this spreads, on-line threats will greatly decrease because more people with online forensic talent will have the power to go after the unethical hackers and on-line law breakers. SOME people and agencies have that power now,but it's a very small number. As the ability spreads, this should greatly deter the masses of criminals.

So keep your eye on the CHFI. This class and cert is generally best suited for those who have been through the CEH program already. The popularity on this certification will continue to grow and realistically has not yet even come close to the height of it's growth phase. This one will be around for quite some time.

Computer Hacking Forensics Investigator - EC-Council