Departments
Guest Column
Computer Forensics Examiners
needed in the digital age
By Nancy White
Executive Director, Computer Forensics Analysis and Training Center (CFATC)
Eastern Technology Council CEO Dianne Strunk provides an introduction to this column in Message from the CEO
With the massive proliferation of digital information, hard-hitting cyber crime and other nefarious activities involving electronic information are more frequent and costly than ever.
According to a January 2009 McAfee study, data theft and breaches from cybercrime may have cost businesses as much as $1 trillion globally in lost intellectual property and expenditures for repairing the damage last year.
The ongoing recession is only increasing the security risk for corporations, as displaced workers become the biggest threat to sensitive information on the network.
For an effective digital investigation, the aid of a professionally certified and experienced Computer Forensics Examiner is required. Computer Forensics Examiners undergo rigorous training, and their profession demands precision and the highest ethical standards. Certification is obtained through a combination of training, documented field experience and successful testing; recertification is normally required every two years.
As the field of digital forensics continues to evolve, demand for these professionals increases, representing growing opportunities for career advancement.
Industry certifications for computer forensics vary and depend on whether candidates are law enforcement or non-law enforcement personnel.
Specific software proficiency can be attained with little or no work experience and results in issuance of a Certificate of Completion — considered a resume builder. The two most popular computer forensics software programs are AccessData’s FTK and Guidance Software’s EnCase. However, the path to full industry certification is much more demanding.
Certified Computer Examiner
Originally designed for law enforcement, Certified Computer Examiner (CCE) certification is now open to those with the experience and knowledge to complete the rigorous testing. First awarded in 2003, this certification is the result of the International Society of Computer Forensic Examiners (ISCFE’s) desire to increase the level of professionalism and further the field and science of computer forensics. Certification requires 18 months experience and recertification is required every two years.
Certified Forensic Computer Examiner
Certified Forensic Computer Examiner (CFCE ) certification is granted in two ways: through the Internal Certification Training Program and the External Certification Program. A two-week training course and proficiency testing completes the internal process; the External Certification Testing Process is not a training program, but a testing process for those that can demonstrate proficiency. Applicants must be active law enforcement or those who qualify for membership in the International Association for Computer Investigative Specialists, commonly known as IACIS. To maintain a CFCE certification, you must complete the recertification process once every three years.
Certified Information Systems Security Professional
Widely considered the gold standard in the industry, Certified Information Systems Security Professional (CISSP) certification is an independent information security designation governed by the International Information Systems Security Certification Consortium (ISC). The CISSP examination is based on what ISC terms the Common Body of Knowledge (CBK). The CISSP CBK is fundamentally based on the CIA’s three core information security and assurance tenets — confidentiality, integrity and availability — and balances this triad across 10 areas of interest.
For more information about the scholarship, visit www.cyberethicscertificate.com.
