New Cloud Security Credential Coming in 2014

IT professional groups team up to design program and establish requirements.

Two organizations are teaming up to create a professional IT certification that combines information security with cloud computing.

(ISC)2 and the Cloud Security Alliance will develop the credential, which will build on existing certifications offered by both organizations, including (ISC)2’s Certified Information Systems Security Professional and CSA’s Certificate of Cloud Security Knowledge. The new credential will focus on the technical knowledge required to design business systems based on cloud computing.

“As organizations continue to adopt cloud computing at a rapid pace, there is a strong need to provide a body of knowledge that encompasses the evolving technology and risk landscape that validates the skills of the professionals tasked with protecting those businesses,” said Hord Tipton, executive director of (ISC)2. “Our combined effort ensures the world’s knowledge leaders are put to the task.”

The 2013 Global Information Workforce Study by (ISC)2 found that cloud computing is the top area where information security professionals lack expertise, with nearly 60 percent of those surveyed citing the need for such training. Nearly all of the respondents said they work in companies that are turning to the cloud, at least to some degree, and nearly three-quarters cited a need for new skills to manage in this environment, particularly when it comes to security, the study found.

To establish the credential, (ISC)2 and CSA plan to pool subject matter experts from their membership base to analyze cloud security tasks and processes and establish the required areas of expertise. The effort also will determine a globally accepted benchmark to be considered competent in the field.

The new credential and first examinations will be available in 2014, according to (ISC)2 said.