Page 37 - Third Issue
P. 37
6. Security Auditor:
A security auditor evaluates the effectiveness of an
organization's security controls and policies. They conduct
audits, vulnerability assessments, and penetration testing
to identify weaknesses and make recommendations for
improvement.
Certification:
• Certified Information Systems Auditor (CISA)
• Certified Information Systems Security Professional (CISSP)
• Information Systems Certification
• Certified Information Security Manager (CISM)
7. Security Engineer:
A security engineer designs, implements, and manages
security systems and technologies. They configure
firewalls, intrusion detection systems, and other security
By:
tools, and ensure the proper functioning of security
Prateek Sharma
infrastructure.
Kharel
Certification:
• Certified Information Systems Security Professional
(CISSP)
• Certified Information Security Manager (CISM)
• Offensive Security Certified Professional (OSCP)
8. Malware Analyst: • Certified Cloud Security Professional (CCSP)
A malware analyst specializes in analyzing and • Certified Information Privacy Professional/
understanding malicious software. They dissect malware Information Technology (CIPP/IT)
samples, identify their behavior and capabilities, and
develop countermeasures to protect systems from new
threats.
Certification:
• Certified Malware Investigator (CMI)
• GIAC Reverse Engineering Malware (GREM)
• Certified Malware Investigator (CMI)
• Malware Analysis Certification (MAC)
9. Security Awareness Trainer:
A security awareness trainer educates employees
and end-users about cybersecurity best practices
and policies. They conduct training sessions, create
educational materials, and promote a security-conscious
culture within the organization.
Certification:
• Certified Security Awareness Practitioner (CSAP)
10. Digital Forensics Investigator: • Certified Security Awareness Professional (CSAP)
A digital forensics investigator collects and analyzes • Certified Security Awareness Specialist (CSAS)
digital evidence in cases of cybercrime and computer- • Certified Security Awareness Trainer (CSAT)
related incidents. They use specialized tools and • Certified Security Awareness Educator (CSAE)
techniques to recover data, trace digital trails, and
provide evidence for legal proceedings.
Certification:
• Certified Digital Forensics Examiner (CDFE)
• Certified Computer Forensics Examiner (CCFE)
• Certified Forensic Computer Examiner (CFCE)
• Certified Cyber Forensics Professional (CCFP)
• Certified Forensic Analyst (CFA)
• EnCase Certified Examiner (EnCE)
• GIAC Certified Forensic Examiner (GCFE)
• Certified Forensic Computer Investigator (CFCI)
ICT NEPAL (Issue-3, 2023) 37
