If companies ever needed justification for investing more in advanced and technical security training, then the onslaught of attacks we’ve seen over the past couple of months are it.
Past News ReleasesRSS
Albuquerque, NM (PRWEB) June 22, 2011
The list of recently compromised companies just keeps growing, with names like Sony, Lockheed Martin, RSA Security, Citigroup, IMF, the Senate, and most recently, SEGA with 1.3 million users potentially being affected. There seems no end of the storm in sight. As technology evolves, there will be more features and complexity, which may lead to more vulnerabilities being exposed for perpetrators to exploit. More than ever, advanced security training is essential for companies to protect their information assets, thus EC-Council launched the CAST Summit to help address this need.
“If companies ever needed justification for investing more in advanced and technical security training, then the onslaught of attacks we’ve seen over the past couple of months are it,” said Sanjay Bavisi, president and co-founder of EC-Council, creator of the Department of Defense Directive 8570-approved Certified Ethical Hacker (CEH) program. “Today’s attackers are clever enough to launch sophisticated attacks, but if there’s a simple, common vulnerability to exploit, they’ll be on it. Security professionals must be able to match them, step for step, by staying abreast of all attack methodologies, from the everyday, routine attacks to the specific, complex attacks.”
All these clearly indicate the importance of having a well-trained cyber security workforce – equipped with the latest skills and knowledge to thwart these attacks and prevent further intrusions. Adequate IT security training would allow for corporations to know how to identify the proper security technologies and methodologies for maintaining both its IT and network infrastructure – especially so for corporations that deal with large horde of information, some highly confidential, being located at a single source, such as a databases.
EC-Council recently launched the Center of Advanced Security Training (CAST). The objective of CAST is to make available to IT security professionals advanced and highly technical training covering various important domains of information security. CAST offers training related to key topics such as advanced penetration testing, mobile forensics, application security, network defense and cryptography. All these highly technical and lab intensive programs are co-developed with industry practitioners who are experts in their field, and will allow participants to combat real world scenario through a series of simulated but realistic lab exercises.
Along with CAST, EC-Council rolled out the CAST Summit series, starting in Washington DC in August. This uniquely designed program will put together a selection of workshops offered by CAST, in one location, for information security professionals in the Washington DC, Virginia and Maryland area seeking to embark on advanced security training in the domains of penetration testing, network defense, mobile forensics, cryptography and application security. The program wraps up with a one-day seminar that will allow participants to learn from the experts through a set of mini-lectures, and will not be rushed through short presentations. The very first CAST Summit will be held at the Hyatt Regency in Bethesda from Aug 22 – 25. For more information about CAST Summit, please visit http://www.eccouncil.org/resources/ciso-executive-summit.
“It’s not just the high-profile targets, like Sony which seems to be a target of advanced persistent threats as well, that need to worry. As we’ve seen, these attacks can be just as opportunistic as they are targeted, so all companies need to be alert, prepared, and proactive,” added Bavisi. “Training is a minuscule investment, compared to potentially massive financial loss and irreparable damage to a company’s reputation. For training to be effective, it’s going to have to train security personnel how to think like a malicious hacker, in order to stop them.”
The International Council of E-Commerce Consultants (EC-Council) is a member-based organization that certifies individuals in cybersecurity and e-commerce. It is the owner and developer of 20 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and Certified Security Analyst /Licensed Penetration Tester (ECSA/LPT). EC-Council has trained over 90,000 security professionals and certified more than 40,000 members. Its certification programs are offered by over 450 training centers across 87 countries. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. Department of Defense via DoD 8570.01-M, the Montgomery GI Bill, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates EC-Council University and the global series of Hacker Halted and TakeDownCon information security conferences. The global organization is headquartered in Albuquerque, New Mexico. More information about EC-Council is available at http://www.eccouncil.org.