Certification - May 2008 - (Page 21) To learn more about IT security, check CertScope to read more than 700 CertMag articles and link to more than 300 Web sites covering “security.” rity alone. Some of the larger players include NetApp and Symantec. Another widely discussed security topic is encryption. From algorithms and key management to buildversus-buy decisions, the science and business of encryption is a necessary consideration in securing data. The basic idea is to use an encryption method or device to encode sensitive information that can be revealed only with the right decryption key. For many implementations, the choice of which library to use may depend on the speed of encoding and decoding, the level of security needed, compliance with government regulations and compatibility with other applications. Of course, another consideration is identifying what exactly should be encrypted. Should the network, server, disk drive, database, file or just sensitive fields be encrypted? Each choice has runtime, access entitlement and maintenance implications for sensitive data as well as nonsensitive data that may be unnecessarily encrypted at the same time. This is something to think about as disk-drive and motherboard encryp- Information Systems Audit and Control Association (ISACA), ITGI defines industry-standard objectives for information security and other best practices around IT governance. Its official document is called the Control Objectives for Information and related Technology (COBIT) and is referenced by thousands of information governance, control, security and audit professionals. Security Technologies To better understand data security and its technology solutions market, it is first important to distinguish between physical and logical data security. Greg Schulz, founder and senior analyst of independent storage analyst firm The StorageIO Group, defines physical security as things such as door locks, video cameras, duty guards, background checks, biometric and encrypted USB access devices and audited data shredding. He defines logical security as things such as rights-managed software for user names and passwords; disk, file and database encrypTranscender® IT Certification Preparation Program tion libraries; secured network 100% and server tools; partitioned PREPARED storage; and audit trails. There are many vendors marketing Dear Test Administrator/Neighboring Test-Taker/Witness to Glory: these and other techniques, Name ,the intellectual gladiator who and they offer varying degrees handed you this card, has completed the Transcender IT certification of technology integration. Confidence Certification To stop identity and intelligence thieves from hacking into networks and computers, there are a host of solutions, including firewalls, intrusion prevention systems, probes and sniffers, honey pots (decoys) and access and auditing software. In fact, there are hundreds of tools on the market related to this aspect of information secu- preparation program. What does this mean, you ask? It means this person is about to have their way with this exam. They are about to flourish and fire their six guns at the feet of this exam, while this exam dances to their furious, merciless beat. It means that this person has Transcender’s industry-best 100% guarantee—they will pass this exam. So take a good look at this champion, because they won’t be here very long. Transcendent’s Signature Date , 20 © 2008 KAPLAN IT, INC. ALL RIGHTS RESERVED. TRANSCENDER® KAPLAN IT, INC. ALL RIGHTS RESERVED. http://www.certmag.com/ http://www.transcender.com
For optimal viewing of this digital publication, please enable JavaScript and then refresh the page. If you would like to try to load the digital publication without using Flash Player detection, please click here.