1. Resetting a Lost MySQL PasswordBy Yaakov Ellis Due to my inexperience administering anything having to do with Linux, while trying to reset the root password, I accidentally put in some bad information into the password field (I forgot to use the password() function to generate ...Ellis Web - http://ellisweb.net/
2. HMRC advertises for security expertsBy dizzy(dizzy) Interesting job advert for "IT Security Risk Consultants", working in a Government department, mostly in Essex at the location of HMRC offices. So much for security procedures being in place and just not being followed. ...Dizzy Thinks - http://dizzythinks.net/
3. Show your Windows users the strength of their passwords as they type and change them! Filter your users new passwords, and enforce strong ones! NO MORE WEAK PASSWORDS!Digg / Security / upcoming - http://digg.com/security
Enjoy reading.
Regards,
Cheri
SHIFT HAPPENS Video (Technology in Perspective for Information Security Professionals, Consumers)
Monday, December 17, 2007
Thursday, December 13, 2007
New Article about Online Security...
Just posted a new short article about Online Security at this URL:
http://JITVideos.info/OnlineSecurity.html
http://JITVideos.info/OnlineSecurity.html
Tuesday, December 11, 2007
Upcoming Global InfoSec Events (you can earn CPE's)...
Here are some upcoming InfoSec Events around the globe:
1. SEMAFOR Security, Management, Audit Forum
22-23 January 2008
Hotel Marriott, Warsaw, Poland
2. John Colley, Managing Director of (ISC)2 EMEA, will be among the numerous Information Security Professionals to deliver a presentation at the second SEMAFOR Forum on January 22-23.
3. Infosecurity Italia
5-7 February 2008
Fieramilanocity, Milan, Italy
Earn CPEs at Italy’s most important and comprehensive information security exhibition. The event features informative conference sessions along with a top-level continuing education program devoted to information management as well as an exhibit featuring the latest technologies and solutions. Visit (ISC)2 at booth E22.
4. Secur Middle East Congress
18-19 February, 2008
JW Marriott Hotel, Dubai, UAE
Join (ISC)2 at this 2-Day conference covering the latest developments in securing wireless technology, identification and authentication, hacking and threat counter-measures, network security for corporate defense, and enterprise and security architecture. (ISC)2 members are offered a 15% discount and can earn up to 12 CPEs.
5. Infosecurity Belgium21-22 March 2008Brussels Kart, Brussels, Belgium
Visit (ISC)2 at stand C075 and earn CPEs by attending the seminar tracks at this 2-Day event. This year, (ISC)2 will be offering the opportunity to take certification exams (CISSP, SSCP, and concentration exams) at the event on 21 March, 2008. For registration information, please visit (ISC)2 's web site (http://www.isc2.org/).
Perhaps you can attend one of these events. (I'm not "affiliated" with any event, (ISC)2 corporate, event sponsors, or companies). This is a non-commercial post, provided as a simple courtesy to fellow IA professionals across geographic boundaries.
Regards,
Cheri Sigmon, CISSP
---
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
1. SEMAFOR Security, Management, Audit Forum
22-23 January 2008
Hotel Marriott, Warsaw, Poland
2. John Colley, Managing Director of (ISC)2 EMEA, will be among the numerous Information Security Professionals to deliver a presentation at the second SEMAFOR Forum on January 22-23.
3. Infosecurity Italia
5-7 February 2008
Fieramilanocity, Milan, Italy
Earn CPEs at Italy’s most important and comprehensive information security exhibition. The event features informative conference sessions along with a top-level continuing education program devoted to information management as well as an exhibit featuring the latest technologies and solutions. Visit (ISC)2 at booth E22.
4. Secur Middle East Congress
18-19 February, 2008
JW Marriott Hotel, Dubai, UAE
Join (ISC)2 at this 2-Day conference covering the latest developments in securing wireless technology, identification and authentication, hacking and threat counter-measures, network security for corporate defense, and enterprise and security architecture. (ISC)2 members are offered a 15% discount and can earn up to 12 CPEs.
5. Infosecurity Belgium21-22 March 2008Brussels Kart, Brussels, Belgium
Visit (ISC)2 at stand C075 and earn CPEs by attending the seminar tracks at this 2-Day event. This year, (ISC)2 will be offering the opportunity to take certification exams (CISSP, SSCP, and concentration exams) at the event on 21 March, 2008. For registration information, please visit (ISC)2 's web site (http://www.isc2.org/).
Perhaps you can attend one of these events. (I'm not "affiliated" with any event, (ISC)2 corporate, event sponsors, or companies). This is a non-commercial post, provided as a simple courtesy to fellow IA professionals across geographic boundaries.
Regards,
Cheri Sigmon, CISSP
---
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
Summary: The Domains of the Common Body of Knowledge (CBK) for CISSP and SSCP certs
Part A, CISSP knowledge areas
These are the Common Body of Knowledge (CBK) "Ten Domains" WRT the CISSP certification:
1. Access Control
2. Application Security
3. Business Continuity and Disaster Recovery Planning
4. Cryptography
5. Information Security and Risk Management
6. Legal, Regulations, Compliance, and Investigations
7. Operations Security
8. Physical (Environmental) Security
9. Security Architecture and Design
10. Telecommunications and Network Security
---
Part B, SSCP knowledge areas
Here are the Common Body of Knowledge (CBK) "Seven Domains" WRT the SSCP certification:
1. Access Control
2. Analysis and Monitoring
3. Cryptography
4. Malicious Code and Other Attacks
5. Networks and Telecommunications
6. Risk, Response, and Recovery
7. Security Operations and Administration
I hope this helps you, as a brief introduction. For details, go directly to the source, (ISC)2. ;-)
NOTE: WRT training options, I personally found the "Yellow Book" and the CISSP Prep Guide by Shon Harris to be the most helpful, along with a 10-week study group via the Information Systems Security Association, (ISSA), http://www.issa-nova.org/ and http://www.issa-hr.org/
Regards,
Cheri Sigmon, CISSP
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
These are the Common Body of Knowledge (CBK) "Ten Domains" WRT the CISSP certification:
1. Access Control
2. Application Security
3. Business Continuity and Disaster Recovery Planning
4. Cryptography
5. Information Security and Risk Management
6. Legal, Regulations, Compliance, and Investigations
7. Operations Security
8. Physical (Environmental) Security
9. Security Architecture and Design
10. Telecommunications and Network Security
---
Part B, SSCP knowledge areas
Here are the Common Body of Knowledge (CBK) "Seven Domains" WRT the SSCP certification:
1. Access Control
2. Analysis and Monitoring
3. Cryptography
4. Malicious Code and Other Attacks
5. Networks and Telecommunications
6. Risk, Response, and Recovery
7. Security Operations and Administration
I hope this helps you, as a brief introduction. For details, go directly to the source, (ISC)2. ;-)
NOTE: WRT training options, I personally found the "Yellow Book" and the CISSP Prep Guide by Shon Harris to be the most helpful, along with a 10-week study group via the Information Systems Security Association, (ISSA), http://www.issa-nova.org/ and http://www.issa-hr.org/
Regards,
Cheri Sigmon, CISSP
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
Annc: (ISC)2 Special Events and Offers for InfoSec professionals
For the latest special events and offers from (ISC)2, see this announcement:
InfoSec Special Events and Offers (Follow the links below for more details):
1. Advanced Certification Review Classes
2. The Ultimate Self-Study Package
3. (ISC)2 eLearning CPEs
4. Global events from (ISC)2
5. The Official (ISC)2 Guide to the CISSP® CBK®
NOTE: I am not affiliated with (ISC)2, except as a certified professional. This information is provided merely for your convenience, and I receive no profits from sharing this with you...
Cheri Sigmon, CISSP
p.s. Next, I'll give you a list of the 10 domains in the Common Body of Knowledge (CBK), for those who are interested in getting started with the certification process. See the next post...
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
InfoSec Special Events and Offers (Follow the links below for more details):
1. Advanced Certification Review Classes
2. The Ultimate Self-Study Package
3. (ISC)2 eLearning CPEs
4. Global events from (ISC)2
5. The Official (ISC)2 Guide to the CISSP® CBK®
NOTE: I am not affiliated with (ISC)2, except as a certified professional. This information is provided merely for your convenience, and I receive no profits from sharing this with you...
Cheri Sigmon, CISSP
p.s. Next, I'll give you a list of the 10 domains in the Common Body of Knowledge (CBK), for those who are interested in getting started with the certification process. See the next post...
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
Sunday, December 9, 2007
Welcome to the InfoSec and CISSP Community Blog...
Welcome to the InfoSec and CISSP Community Blog...
If you are planning to take the CISSP exam or you have already been certified for the CISSP information security (InfoSec) certification by (ISC)2, this is the place for you.
Also, it is intended for people who just want to learn more about information security and good security practices in order to protect themselves and their loved ones, etc. Your feedback, files, and posts are welcome.
See these links:
1. If you want to prepare for the exam: (ISC)2 http://www.isc2.org/ and CCCure http://www.cccure.org/
2. If you want to watch InfoSec YouTube videos on demand:
http://www.jitvideos.info/
Regards,
Cheri Sigmon, CISSP
Blogger: InfoSec
If you are planning to take the CISSP exam or you have already been certified for the CISSP information security (InfoSec) certification by (ISC)2, this is the place for you.
Also, it is intended for people who just want to learn more about information security and good security practices in order to protect themselves and their loved ones, etc. Your feedback, files, and posts are welcome.
See these links:
1. If you want to prepare for the exam: (ISC)2 http://www.isc2.org/ and CCCure http://www.cccure.org/
2. If you want to watch InfoSec YouTube videos on demand:
http://www.jitvideos.info/
Regards,
Cheri Sigmon, CISSP
Blogger: InfoSec
Subscribe to:
Posts (Atom)
