Information and software security professional body (ISC)2 has announced the availability of its Certified Cyber...
Forensics Professional certification in Europe.
Registration for CCFP-EU is now open, with the first exam available on 30 April 2014 at Pearson VUE test centres across the region. The German translation of the exam is to be available from 15 June 2014.
Initially available in the US and South Korea, the credential has been developed for the European legal environment with input from experts in the public and private sector.
The CCFP is an expert-level credential, which (ISC)2 said contrasts with many other forensic certifications that are of a foundational level and focus on a narrow aspect of cyber forensics.
The certification body claims that its CCFP is the only global standard currently available for assessing experienced digital forensics professionals’ mastery of the discipline.
“A major challenge for the information security community today is that we are unable to fight cyber crime as one force,” said Lorenz Kuhlee, (ISC)2 volunteer and lead investigator for the risk team at Verizon.
“The crime scene is broad so, to be effective, there is a need for collaboration across the cyber crime landscape in a way that bridges all aspects of security, including technology, analytics, law enforcement and business,” he said.
According to Kuhlee, the complexity is much greater in Europe due to the law-related disparities among countries.
More on (ISC)²
“The CCFP credential supports the unique requirements of individual countries, but equips professionals with a best practice-led, uniform and thorough approach to dealing with overall challenges,” he said.
The CCFP spans the digital forensics and information security disciplines. The six (ISC)2 common body of knowledge (CBK) domains within the credential include:
- Legal and ethical principles;
- Forensic science;
- Digital forensics;
- Application forensics;
- Hybrid and emerging technologies.
“Cyber forensics is more than crime scenes and just collecting and analysing hard drives and USB sticks,” said Adrian Davis, managing director for (ISC)2 Europe.
“It can be applied to big data, security log review and other important security activities where careful analysis can yield important insights. The discipline permeates information security, law enforcement and law in general,” he said.
Davis said that while the importance of cyber forensics is growing globally, standardising practices in the field across Europe is especially challenging given the numerous jurisdictions in the region.
“The CCFP encompasses the depth and breadth of expertise that every cyber forensics professional must possess,” he said.
This ranges from forensics techniques and procedures through to standards of practice, and includes the legal and ethical principles that are commonly recognised, applicable and relevant across the region.
To attain the CCFP, applicants must hold a four-year degree leading to a Baccalaureate or regional equivalent and have at least three years of cumulative paid, full-time, professional experience in digital forensics or IT security in three out of the six domains of the credential.
Those not holding a degree must have six years of cumulative paid, full-time, digital forensics or IT security work experience in three out of the six domains of the credential; or an alternate forensics certification approved by (ISC)² and five years of full-time digital forensics or IT security experience in three out of the six domains of the credential.