Global Information Assurance Certification
Global Information Assurance Certification (GIAC) is an information security certification entity that specialises in technical and practical certification as well as new research in the form of its GIAC Gold program. SANS Institute founded the certification entity in 1999 and the term GIAC is trademarked by The Escal Institute of Advanced Technologies.
GIAC provides a set of vendor-neutral computer security certifications linked to the training courses provided by the SANS. GIAC is specific to the leading edge technological advancement of IT security in order to keep ahead of "black hat" techniques. Papers written by individuals pursuing GIAC certifications are presented at the SANS Reading Room on GIAC's website.
Initially all SANS GIAC certifications required a written paper or "practical" on a specific area of the certification in order to achieve the certification. In April 2005, the SANS organization changed the format of the certification by breaking it into two separate levels. The "silver" level certification requires two multiple-choice tests, whereas the "gold" level certification has both the multiple-choice tests requirement as well as a practical.
As of January 30, 2011, GIAC claims to have granted 34,772 certifications worldwide.[1]
SANS GIAC Certifications
Security Administration
| Code |
Name |
Status |
| GISF |
GIAC Information Security Fundamentals |
| GSEC |
GIAC Security Essentials Certification |
| GCFW |
GIAC Certified Firewall Analyst |
| GCIA |
GIAC Certified Intrusion Analyst |
| GCIH |
GIAC Certified Incident Handler |
| GCUX |
GIAC Certified UNIX Security Administrator |
| GCWN |
GIAC Certified Windows Security Administrator |
| GCED |
GIAC Certified Enterprise Defender |
| GPEN |
GIAC Penetration Tester |
| GWAPT |
GIAC Certified Web Application Penetration Tester |
| GAWN |
GIAC Assessing Wireless Networks |
| GSIP |
GIAC Secure Internet Presence |
Retired |
| GSOC |
GIAC Securing Oracle Certification |
Retired |
Audit
| Code |
Name |
Status |
| G7799 |
GIAC Certified ISO-17799 Specialist |
| GSNA |
GIAC Systems and Network Auditor |
| GSAE |
GIAC Security Audit Essentials |
Retired |
Management
| Code |
Name |
Status |
| GISP |
GIAC Information Security Professional |
| GSLC |
GIAC Security Leadership Certification |
| GCPM |
GIAC Certified Project Manager |
| GCSC |
GIAC Certified Security Consultant |
Retired |
Operations
| Code |
Name |
Status |
| GOEC |
GIAC Operations Essentials Certification |
Retired |
Software Security and/or Secure Coding
| Code |
Name |
Status |
| GNET |
GIAC .Net |
Retired |
| GSSP C |
GIAC Secure Software Programmer C |
Retired |
| GSSP Java |
GIAC Secure Software Programmer Java |
| GSSP .NET |
GIAC Secure Software Programmer .NET |
Forensics
| Code |
Name |
Status |
| GCFE |
GIAC Certified Forensic Examiner |
| GCFA |
GIAC Certified Forensic Analyst |
| GREM |
GIAC Certified Reverse Engineering Malware |
Legal
| Code |
Name |
Status |
| GLEG |
GIAC Legal Issues |
Expert
| Code |
Name |
Status |
| GSE |
GIAC Security Expert |
| GSE-Malware |
GIAC Security Expert in Malware |
| GSE-Compliance |
GIAC Security Expert in Compliance |
Controversy
Controversy surrounded the decision to allow certifications without completion of the practical assignment. This decision had the effect of simplifying the process to obtain the various four-letter designations. GIAC desired to increase the probability of students attempting certifications, presumably to increase the population of certified individuals, and therefore the industry relevance of GIAC certifications as a whole. Organizations which use GIAC certifications as professional qualification standard for candidates often do not specify a Gold or Silver certification requirement. The community concern was that devaluation of older certifications would ensue.
Notes
|
Information security certifications
|
|
| CompTIA |
|
|
| Cisco Systems |
|
|
| EC-Council |
ENSA • CEH • CHFI • ECSA • LPT • CNDA • ECIH • ECSS • ECVP • EDRP • ECSP • ECSO
|
|
| GIAC |
GSIF • GSEC • GCFW • GCIA • GCIH • GCUX • GCWN • GCED • GPEN • GWAPT • GAWN • GISP • GLSC • GCPM • GLEG • G7799 • GSSP-NET • GSSP-JAVA • GCFE • GCFA • GREM • GSE
|
|
| ISACA |
|
|
| (ISC)² |
SSCP • CAP • CSSLP • CISSP • ISSAP • ISSEP • ISSMP • |
|
| ISECOM |
OPST • OPSA • OPSE • OWSE • CTA
|
|
| Offensive Security |
|
|
| Mile2 Certification |
CPTE • CPTC • CISSO • CSLO • CDFE
|
|
| CERT |
CSIH
|
|
| eLearnSecurity |
|
|