(ISC)² (the largest not-for-profit membership body of certified information and software security professionals with nearly 100,000 members worldwide) has announced the availability of its Certified Cyber Forensics Professional – European Union certification in Europe. Registration is now open, with the first examination available on 30 April 2014 at Pearson VUE Test Centres across the region. The German translation of the examination will be available on 15 June 2014.
The CCFP is the only global standard currently available for assessing experienced digital forensics professionals’ mastery of the discipline. Originally only available for the US and South Korea, the credential has been developed for the European legal environment following a series of exam workshops conducted by a panel of experts from public and private sector organisations in the UK and Europe to ensure that its scope and content reflects the requirements of the region.
The CCFP is an expert-level credential that offers a common, internationally recognised body of knowledge. It exposes a comprehensive, yet advanced knowledge that today’s experienced cyber forensics practitioners must demonstrate.
The CCFP is the only global standard currently available for assessing experienced digital forensics professionals’ mastery of the discipline
Many of the existing certifications available today are of a foundational level and focus on a narrow aspect of the cyber forensics realm.
“A major challenge for the information security community today is that we are unable to fight cyber crime as one force,” explained Lorenz Kuhlee, CCFP-EU (ISC)² volunteer and lead investigator for the RISK Team at Verizon. “The crime scene is broad and so, to be effective, there is a need for collaboration across the cyber crime landscape in a way that bridges all aspects of security including technology, analytics, law enforcement and business.”
Kuhlee continued: “In Europe, the complexity is much higher due to the law-related disparities among countries. The CCFP credential supports the unique requirements of individual countries, but equips professionals with a Best Practice-led, uniform and thorough approach to dealing with overall challenges.”
The CCFP spans the digital forensics and information security disciplines. The six (ISC)² CBK domains within the credential include: Legal and Ethical Principles, Investigations, Forensic Science, Digital Forensics, Application Forensics and Hybrid/Emerging Technologies.
Applications to Big Data
“Cyber forensics is more than crime scenes and just collecting and analysing hard drives and USB sticks,” said Adrian Davis, managing director for EMEA at (ISC)².
“It can be applied to Big Data, security log review and other important security activities where careful analysis can yield important insights. Additionally, the discipline permeates information security, law enforcement and law in general.”
Davis went on to state: “While its importance is growing globally, standardising cyber forensics practices across Europe is especially challenging given the numerous jurisdictions within the region. We have leveraged the expertise of subject matter experts to adapt the certification to specifically meet the needs of the European market. The CCFP encompasses the depth and breadth of expertise that every cyber forensics professional must possess – from forensics techniques and procedures through to standards of practice, as well as legal and ethical principles that are commonly recognised, applicable and relevant across the region.”
To attain the CCFP, applicants must hold a four-year degree leading to a Baccalaureate or regional equivalent and have at least three years of cumulative paid full-time, professional experience in digital forensics or IT security in three out of the six domains of the credential.
Those not holding a degree must have six years of cumulative paid full-time digital forensics or IT security work experience in three out of the six domains of the credential or an alternate forensics certification approved by (ISC)² and five years of full-time digital forensics or IT security experience in three out of the six domains of the credential.
Candidates can find out more information about CCFP, download the exam outline, sign up for training courses and register for the exam at: http://www.isc2.org/ccfp.
The Official (ISC)² Guide to the CCFP CBK will be available in electronic format on iTunes by the end of April.