Professional & Academic

Certifications

CREST Certified Infrastructure Tester

The CREST Certified Infrastructure Tester examination is a rigorous assessment of the candidate’s ability to assess a network for flaws and vulnerabilities at the network and operating system layer.  The exam includes: Public domain information sources; Networking; Windows operating systems; Unix operating systems; Desktops; Databases; Voice networking; Wireless networking

For more information: http://www.crest-approved.org/professional-examinations/certified-infrastructure-tester/index.html

CREST Certified Web Application Tester

The CREST Certified Web Application Tester examination is an assessment of the candidate’s ability to find vulnerabilities in bespoke web applications.  The examination uses specially designed applications running on a variety of web application platforms and now covers a wider scope than purely traditional web applications to include more recent advances in the field of web application technology and security.  The candidate will be expected to demonstrate that they are able to find a range of security flaws and vulnerabilities, including proving the ability to exploit and leverage the flaws to ascertain the impact of the issues found.

For more information: http://www.crest-approved.org/professional-examinations/certified-web-application-tester/index.html

CREST Certified Simulated Attack Manager

The (CC SAM) examination tests candidates’ knowledge and expertise in leading a team that specialises in Simulated Attacks. The candidate is expected to have a good breadth of knowledge in all areas of Simulated Attack and proven experience in managing incidents, penetration tests and simulated attack exercises. The exam will assess the candidate’s ability to conduct Simulated Attacks in a realistic, legal and safe manner, ensuring appropriate evidence is collated to provide the customer with actionable intelligence of organisational risks and failings while minimising the risks to the customer’s staff, data and systems.

For more information: http://www.crest-approved.org/professional-examinations/certified-simulated-attack-manager/index.html

Courses

Attack and Defence Simulator

Provider: IRM

This one day course comprises of a half day ethical hacking and incident response workshop designed to introduce delegates to the theory of both cyber topics. This is then followed by a half day ethical hacking and incident response simulation exercise focused around a fictitious website in order to test the practical application of theory taught during the first half of the course. The fast paced and interactive course tests and improves cyber security threat awareness, theory and technical security skills, in addition to how teams cooperate in the midst of a cyber security incident.

The Attack and Defence Simulator was first created for Oxford University’s Cyber Security Centre in order to provide cyber professionals of the future with the necessary intelligence and practical experience to defend the UK’s most crucial businesses.

For more information: http://www.irmplc.com/training/attack-and-defence-simulator/ 

CMST Mobile Application Hacking: Hands-On

Provider: 7Safe

7Safe's 4-day mobile application hacking training course is designed to provide developers and ethical hackers with the fundamentals of mobile application security, detailing the most common vulnerabilities and how to identify them.

Focussing on the prevalent mobile platforms, Android and iOS, delegates will have access to vulnerable mobile applications using devices and emulators to assess their security through a series of practical hands-on exercises. The techniques gained throughout this course will enable delegates understand whether the sensitive information stored on mobile devices is sufficiently protected and what the risk and exposure is if an attacker was able to get his hands on the mobile device.

For more information: http://7safe.com/cmst-mobile-application-hacking-hands-on.htm