Palladium certification
Issuing authority:
Palladium Training Center — LSTC(Leadsino Training Center)
Training introduction:
The purpose of Palladium engineer qualification certification is to train professional technicians and pre-sales sales personnel related to the delivery and consultation of Palladium database security products urgently needed by the government, education, finance, electric power, insurance, operators and other industries. Palladium is responsible for the specific training, assessment and certification process, and issues authoritative manufacturer certification certificates to qualified personnel. Palladium certified engineer series teaching materials have high practicability and gold content. Excellent teaching materials, combined with the high-end certification courses developed by Palladium with complete contents and close integration with practical work, combine Palladium's world leading database security protection system and overall database security solutions, which have been highly praised by partners and participants.
Suitable personnel:
Technical director, technical manager, sales manager, pre-sales engineer, implementation engineer, and product installation, commissioning and maintenance personnel of Palladium partners.
CISP certification
Issuing authority:
China Information Security Evaluation Center
Training introduction:
Registered information security professional (English name certified information security professional, referred to as "CISP") , is recognized as the most authoritative national certification in the field of domestic information security in the industry. Through CISP training and certification, professional technical talents are reserved for the information security posts of various units, which greatly improves the comprehensive ability of information security guarantee of various units. At the same time, the personnel certified by CISP have the information security knowledge and ability in line with the requirements of international standards, and are today's best New opportunities for post-war development.
Registered information security professionals (CISP) are divided into three categories: "registered information security engineer (cise)", "registered information security manager (CISO)" and "registered Information Security Auditor (CISA)". Cise is mainly engaged in information security technology development, service engineering construction and other work, and CISO is engaged in information security management and other related work.
The five knowledge systems of CISP examination outline include: information security laws, regulations and standards, information security assurance system and model, information security technology and practice, information security management and practice, and information security engineering. The training adopts the teaching method of combining theory with practice, focusing on lectures, combined with interaction and discussion, and provides interactive communication for students Platform, comprehensively and systematically understand and master the knowledge of information security.
Suitable personnel:
Information supervisors of state organs, public service departments, enterprises and institutions, large and medium-sized enterprises, relevant personnel for the development, use, operation and maintenance management of information systems and network security maintenance personnel.
Registration conditions:
1. Education and work experience, master degree or above, with 1 year of work experience; or bachelor degree, with 2 years of work experience; or college degree, with 4 years of work experience.
2. Professional work experience, At least 1 year working experience in information security.
Cisp-pte certification
Issuing authority:
China Information Security Evaluation Center
Training introduction:
Certified Information Security Professional - Penetration Test Engineer Cisp-pte. the certificate holders are mainly engaged in security penetration testing in the field of information security technology, and have the basic knowledge and ability to plan test schemes, prepare project test plans, prepare test cases and test reports. Cisp-pte focuses on training and assessing senior application security talents, and is the first skill level registration examination combining theory and practice in the industry.
Cisp-pte knowledge architecture consists of four knowledge classes, including:
Fundamentals of Web Security: mainly including code execution vulnerability, injection vulnerability, XSS vulnerability, CSRF / SSRF vulnerability, file processing vulnerability, access control vulnerability, session management vulnerability and other related technical knowledge and practice.
Middleware security foundation: mainly including Apache, IIS, Tomcat, Weblogic, WebSphere, JBoss and other related technical knowledge and practice.
Fundamentals of operating system security: mainly including technical knowledge and practice related to Windows operating system and Linux operating system.
Fundamentals of database security: mainly including technical knowledge and practice related to MSSQL database, MySQL database and Oracle database.
Suitable personnel:
State organs, public service departments, enterprises and institutions, information system testing, security technology related personnel and network security maintenance personnel of large and medium-sized enterprises, security service personnel of Party B (security service, penetration testing, code audit), personnel with certain penetration testing ability or interested in penetration testing, including college students majoring in information security.
Registration conditions:
To apply for cisp-pte, there are no requirements for registration of academic qualifications and work experience, but you need to pass the cisp-pte examination organized by the examination center, agree and abide by the cisp-pte professional guidelines.