Giac

GIAC Certifications courses

Security Administration Management Legal Audit Software Security Forensics
Introductory -Introductory GIAC Information Security Fundamentals GISF - GIAC Business Law and Computer Security GIAC Auditing Wireless Networks - Certificate Stay Sharp Program - Google Hacking and Defense Introductory -GIAC Certified Forensics Examiner GCFE
Intermediate-GIAC Security Essentials Certification Intermediate-GIAC Information Security Professional GIAC Business Law and Computer Security Intermediate-GIAC Certified ISO-17799 Specialist G7799 Securing Windows 2000 - The Gold Standard -
Advanced -GIAC Certified Firewall Analyst Advanced -GIAC Security Leadership Certification Advanced-GIAC Legal Issues Advanced-GIAC Systems and Network Auditor Advanced-GIAC Secure Software Programmer - .NET Advanced-GIAC Certified Forensic Analyst
Advanced -GIAC Certified Intrusion Analyst Advanced -GIAC Certified Project Manager Certification - - Advanced-GIAC Secure Software Programmer - Java -
Advanced -GIAC Certified Incident Handler GIAC Certified Incident Manager GIAC Contracting for Data Security GIAC Payment Card Industry GIAC Secure Internet Presence -
Advanced - GIAC Certified UNIX Security Administrator GIAC Leadership - GIAC Security Audit Essentials GIAC Securing Oracle Certification -
Advanced -GIAC Certified Windows Security Administrator GIAC Security Policy and Awareness - GIAC Law of Fraud Auditing Cisco Routers - The Gold Standard -
Advanced -GIAC Certified Enterprise Defender GIAC HIPAA Security Implementation - GIAC Legal Issues in Information Technologies GIAC Cutting Edge Hacking Techniques -
Advanced -GIAC Certified Penetration Tester GIAC Fundamentals of Information Security Policy - - Securing Solaris - The Gold Standard -
Advanced -GIAC Web Application Penetration Tester Ethics in IT - Stay Sharp Program - Mastering Packet Analysis GIAC Web Application Security -
Highly Advanced GIAC Assessing Wireless Networks GIAC Critical Infrastructure Protection - GIAC Secure Software Programmer - C Stay Sharp Program - Computer and Network Security Awareness Highly Advanced- GIAC Reverse Engineering Malware

Defending Web Applications Security Essential- Developer 522 - 6 days course (9am to 5pm)

Overview
Defending Web applications is critical!
Traditional network defenses such as firewalls fail to secure Web applications, which have to be available to large user communities. The amount and importance of data entrusted to Web applications is growing, and defenders need to learn how to secure it. DEV522 covers the OWASP Top 10 and will help you to better understand Web application vulnerabilities, thus enabling you to properly defend your organization's Web assets.
Mitigation strategies from an infrastructure, architecture, and coding perspective will be discussed alongside real-world implementations that really work. The testing aspect of vulnerabilities will also be covered so you can ensure your application is tested for the vulnerabilities discussed in class.
The class goes beyond classic Web applications and includes coverage of Web 2.0 technologies like AJAX and web services.
To maximize the benefit for a wider range of audiences, the discussions in this course will be programming language agnostic. Focus will be maintained on security strategies rather than coding level implementation.
DEV522:
Defending Web Applications Security Essentials is intended for anyone tasked with implementing, managing, or protecting Web applications. It is particularly well suited to application security analysts, developers, application architects, pen testers, and auditors who are interested in recommending proper mitigations to Web security issues, and infrastructure security professionals who have an interest in better defending their Web applications.
The course will cover the topics outlined by OWASP's Top 10 risks document, as well as additional issues the authors found of importance in their day to day web application development practice. An example of the topics that will be covered include:
infrastructure security
server configuration
authentication mechanisms
application language configuration
application coding errors like SQL injection and cross site scripting
cross site request forging
authentication bypass
web services and related flaws
Web 2.0 and it's use of web services
XPATH and XQUERY languages and injection
Business logic flaws
The course will make heavy use of hands-on exercises. It will conclude with a large defensive exercise, reinforcing the lessons learned throughout the week.
Who Should Attend:
Application developers
Application security analysts or managers
Application architects
Penetration testers who are interested to learn about defensive strategies
Security professionals who are interested in learning about web application security
Auditors who need to understand defensive mechanisms in web applications
Employees of PCI compliant organizations who need to be trained to comply with PCI requirements

Secure Coding in Java/JEE:Developer 541: Developing Defensible Applications (4 Days) (9am to 5pm)

The Difference between Good and Great Programmers
Great programmers have traditionally distinguished themselves by the elegance, effectiveness, and reliability of their code. That's still true, but elegance, effectiveness, and reliability have now been joined by security. Major financial institutions and government agencies have informed their internal development teams and outsourcers that programmers must demonstrate mastery of secure coding skills and knowledge through reliable third-party testing or lose their right to work on assignments for those organizations. More software buyers are joining the movement every week.
Such buyer and management demands create an immediate response from programmers, "Where can I learn what is meant by secure coding?" This unique SANS course allows you to bone up on the skills and knowledge required to prevent your applications from getting hacked.
What Does the Course Cover?
This is a comprehensive course covering a huge set of skills and knowledge. It's not a high-level theory course. It's about real programming. In this course you will examine actual code, work with real tools, build applications, and gain confidence in the resources you need for the journey to improving the security of Java applications.
Rather than teaching students to use a set of tools, we're teaching students concepts of secure programming. This involves looking at a specific piece of code, identifying a security flaw, and implementing a fix for flaws found on the Top 10 and CWE/SANS Top 25 Most Dangerous Programming Errors.
The class culminates in a Secure Development Challenge where you perform a security review of a real-world open source application. You will conduct a code review, perform security testing to actually exploit real vulnerabilities, and finally, using the secure coding techniques that you have learned in class, implement fixes for these issues.
Sampling of Topics
Common Web Application Vulnerabilities
Cross-site scripting (XSS)
Cross-site request forgery (CSRF)
SQL injection
HTTP response splitting
Parameter manipulation
Data Validation
Input validation
Whitelisting vs blacklisting
Output encoding and escaping
Parameterized queries
Using frameworks and APIs
Authentication
How to use encryption and certificates
Protecting session ids
JEE based authentication
Basic and Forms Based Authentication
Client certificate authentication
Session Management
Session hijacking
Session fixation
Access Control
JEE based authorization
Declarative and programmatic access control
Using annotations
Spring Security
Java Security Manager
Encryption
JSSE
JCA
Client certificates
SSL
Java Programming and Language
Race conditions
Logging & error handling
Class security
Who Should Attend?
This course is ideal for:
Developers who want to build more secure applications
Java EE programmers
Software engineers
Software architects
This class is focused specifically on software development but is accessible enough for anyone who's comfortable working with code and has an interest in understanding the developer's perspective including:
Application security auditors
Technical project managers
Senior software QA specialists
Penetration testers who want a deeper understanding of target applications or who want to provide more detailed vulnerability remediation options
Pre-requisites
Students should have at least one year's experience working with the JEE platform and should have thorough knowledge of Java language and Web technology.

GIAC Certified ISO-27000 Specialist (G2700)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
SANS 27000 Implementation & Management, MGT-411
Target:
The ISO-27000 series of standards offers a framework to assist any organization to develop a true security minded corporate culture by instilling best practice and detailed guidance regarding all manner of security issues. This track is designed for information security officers or other management professionals who are looking for a how-to guide for implementing the ISO-27000 series of standards including an Information Security Management System (ISMS) based on ISO 27002 security controls and ISO 27005 Risk Management methods.

G2700 candidates must demonstrate understanding of the ISO-27000 series of standards and the ability to put them into practice.

Note: The G2700 certification was renamed on 2/1/2011 from G7799. The G7799 label was based on the original ISO-17799 security controls which later were moved to the ISO 27000 series standards. This change does not effect the certification status of current holders of the G7799 certification. Anyone renewing a G7799 certificate after 2/1/2011, will automatically receive an updated G2700 certificate.

Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 70% (105 of 150 questions) minimum passing score
Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Assessing Wireless Networks (GAWN)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Hacking and Defending Wireless Networks, SEC-617
Target:
Auditors, network administrators and penetration-testers who are responsible for assessing the security of wireless networks.

The GAWN certification is designed for technologists who need to assess the security of wireless networks. The certification focuses on the different security mechanisms for wireless networks, the tools and techniques used to evaluate and exploit weaknesses, and techniques used to analyze wireless networks. Students will not only gain experience using tools to assess wireless networks, they will understand how the tools operate and the weaknesses in protocols that they evaluate.

Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 70% (105 of 150 questions) minimum passing score
Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Certified Forensic Analyst (GCFA)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Advanced Computer Forensic Analysis and Incident Response, FOR-508
Target:
The GCFA certification is for professionals working in the information security, computer forensics, and incident response fields. The certification focuses on core skills required to collect and analyze data from Windows and Linux computer systems.

The GCFA certifies that candidates have the knowledge, skills, and ability to conduct formal incident investigations and handle advanced incident handling scenarios, including internal and external data breach intrusions, advanced persistent threats, anti-forensic techniques used by attackers, and complex digital forensic cases.

Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 69.3% (104 of 150 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. A scientific passing point study was conducted for the exam. The passing point for the GCFA exam has been determined to be 69.3% for all candidates receiving access to their certification attempts on or after 06/25/2009.

Passing point information for all exams is defined in the "Read Me First" Certification Information presented before candidates start their exam.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Certified Firewall Analyst (GCFW)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Firewalls, Perimeter Protection & Virtual Private Networks, SEC-502
Target:
Individuals responsible for designing, implementing, configuring, and monitoring a secure perimeter for any organization; including routers, firewalls, VPNs/remote access, and overall network design.

GIAC Certified Firewall Analysts (GCFWs) have the knowledge, skills, and abilities to design, configure, and monitor routers, firewalls, and perimeter defense systems.

Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 70% (105 of 150 questions) minimum passing score
Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Certified Intrusion Analyst (GCIA)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Intrusion Detection In-Depth, SEC-503
Target:
Individuals responsible for network and host monitoring, traffic analysis, and intrusion detection

GIAC Certified Intrusion Analysts (GCIAs) have the knowledge, skills, and abilities to configure and monitor intrusion detection systems, and to read, interpret, and analyze network traffic and related log files.

Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 67.3% (101 of 150 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. A scientific passing point study was conducted for the exam. The passing point for the GCIA exam has been determined to be 67.3% for all candidates receiving access to their certification attempts on or after 06/25/2009.

Passing point information for all exams is defined in the "Read Me First" Certification Information presented before candidates start their exam.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Certified Incident Handler (GCIH)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Hacker Techniques, Exploits & Incident Handling, SEC-504
Target:
Individuals responsible for incident handling/incident response; individuals who require an understanding of the current threats to systems and networks, along with effective countermeasures.

GIAC Certified Incident Handlers (GCIHs) have the knowledge, skills, and abilities to manage incidents; to understand common attack techniques and tools; and to defend against and/or respond to such attacks when they occur.

Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 72.7% (109 of 150 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. A scientific passing point study was conducted for the exam. The passing point for the GCIH exam has been determined to be 72.7% for all candidates receiving access to their certification attempts on or after 08/03/2009.

Passing point information for all exams is defined in the "Read Me First" Certification Information presented before candidates start their exam.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Certified UNIX Security Administrator (GCUX)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Securing Unix/Linux, SEC-506
Target:
Individuals responsible for installing, configuring, and monitoring UNIX and/or Linux systems.

GIAC Certified UNIX System Administrators (GCUXs) have the knowledge, skills and abilities to secure and audit UNIX and Linux systems.

Requirements:
1 proctored exam - 75 questions - 2-hour time limit - 65.3% (49 of 75 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. A scientific passing point study was conducted for the exam. The passing point for the GCUX exam has been determined to be 65.3% for all candidates receiving access to their certification attempts on or after 10/07/2010.

Passing point information for all exams is defined in the "Read Me First" Certification Information presented before candidates start their exam.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Certified Windows Security Administrator (GCWN)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Securing Windows, SEC-505
Target:
Individuals responsible for installing, configuring, and securing Microsoft systems and Active Directory networks.

GIAC Certified Windows System Administrators (GCWNs) have the knowledge and skills needed to configure and manage the security of Windows systems and networks, including: Group Policy, Active Directory, DNS, Internet Information Server (IIS), IPSec, RADIUS, VPNs, BitLocker/EFS, and Certificate Services. Candidates should be familiar with Windows XP/Server 2003 through Windows 7/Server 2008 R2.

GIAC Certified Windows System Administrators (GCWNs) have the knowledge, skills and abilities to secure and audit Windows systems, including services such as Group Policy, Active Directory, Internet Information Server, IPSec and Certificate Services.

Requirements:
1 proctored exam - 75 questions - 2-hour time limit - 66.7% (50 of 75 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. A scientific passing point study was conducted for the exam. The passing point for the GCWN exam has been determined to be 66.7% for all candidates receiving access to their certification attempts on or after 02/07/2011.

Passing point information for all exams is defined in the "Read Me First" Certification Information presented before candidates start their exam.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Information Security Fundamentals (GISF)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Intro to Information Security, SEC-301
Target:
Professionals who need to hit the ground running and need an overview of information assurance. Managers, Information Security Officers, and System Administrators who need an overview of risk management and defense in depth techniques. Anyone who writes, implements, or must adhere to policy, disaster recovery or business continuity.

Proficient infosec administrators can network well on the eight layer of the ISO model (political) and the material contained in this track will help them to bridge the gap that often exists between managers and system administrators. GISF candidates will learn and be able to demonstrate key concepts of information security including: understanding the threats and risks to information and information resources, identifying best practices that can be used to protect them, and learning to diversify our protection strategy.

Requirements:
1 proctored exam - 75 questions - 2-hour time limit - 70.7% (53 of 75 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. A scientific passing point study was conducted for the exam. The passing point for the GISF exam has been determined to be 70.7% for all candidates receiving access to their certification attempts on or after 02/10/2011.

Passing point information for all exams is defined in the "Read Me First" Certification Information presented before candidates start their exam.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Information Security Professional (GISP)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
SANS® +S™ Training Program for the CISSP® Certification Exam, MGT-414
Target:
Security Professionals that want to fill the gaps in their understanding of technical information security; System, Security, and Network Administrators that want to understand the pragmatic applications of the Common Body of Knowledge; managers that want to understand information security beyond simple terminology and concepts; anyone new to information security with some background in information systems and networking. Candidates may also wish to use this certification as an independent assessment of your mastery of the (ISC)2 Common Body of Knowledge.

Requirements:
1 proctored exam - 250 questions - 5-hour time limit - 70% (175 of 250 questions) minimum passing score
Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Payment Card Industry (GPCI)- Retired

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Meeting the Minimum: Standard for Protecting Credit Card and Other Private Information PCI CISP: The Visa Digital Dozen, AUD-521
Target:
Managers overseeing PCI CISP compliance, External auditors performing PCI CISP validation, Security professionals operating in a PCI CISP compliant environment, Internal auditors desiring to validate interim compliance
Requirements:
one online exam
Renewal:
N/A
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Security Audit Essentials (GSAE) - Retired

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
IT Security Audit & Control Essentials, AUD-410
Target:
Individuals entering the information security industry who are tasked with auditing organization policy, procedure, risk, or policy conformance.

Individuals who complete the GIAC IT Security and Audit Essentials will have a firm grasp of information security principles and issues and will be equipped to develop best practice audit checklists. They will also be prepared to perform limited risk assessments as well as security and conformance audits based on established best practice.

Requirements:
One proctored exam - 150 questions - 4 hour time limit
Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Security Essentials Certification (GSEC)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
SANS Security Essentials Bootcamp Style, SEC-401
Target:
Security Professionals that want to demonstrate they are qualified for IT systems hands-on roles with respect to security tasks. Candidates are required to demonstrate an understanding of information security beyond simple terminology and concepts.

Requirements:
1 proctored exam - 180 questions - 5-hour time limit - 73.9% (133 of 180 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. A scientific passing point study was conducted for the exam. The passing point for the GSEC exam has been determined to be 73.9% for all candidates receiving access to their certification attempts on or after 03/01/2010.

Passing point information for all exams is defined in the "Read Me First" Certification Information presented before candidates start their exam.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Security Leadership Certification (GSLC)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
SANS Security Leadership Essentials for Managers, MGT-512
Target:
Security Professionals with managerial or supervisory responsibility for information security staff.

Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 68.7% (103 of 150 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. A scientific passing point study was conducted for the exam. The passing point for the GSLC exam has been determined to be 68.7% for all candidates receiving access to their certification attempts on or after 03/01/2010.

Passing point information for all exams is defined in the "Read Me First" Certification Information presented before candidates start their exam.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Secure Software Programmer - .NET (GSSP-NET)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Secure Coding in .NET: Developing Defensible Applications, GSSP-NET
Target:
Individuals who are responsible for coding secure software applications using .NET, identifying shortfalls in the security knowledge of other programmers, ensuring other programmers have adequate secure coding skills, and advanced secure programming skills.

The GIAC Secure Software Programmers certification allows candidates to demonstrate mastery of the security knowledge and skills needed to deal with common programming errors that lead to most security problems.

GIAC Certified secure software programmers (GSSP) have the knowledge, skills, and abilities to write secure code and recognize security shortcomings in existing code.

Requirements:
1 proctored exam - 100 questions - 4-hour time limit - 67% (67 of 100 questions) minimum passing score
Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Systems and Network Auditor (GSNA)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Auditing Networks, Perimeters & Systems, AUD-507
Target:
Technical staff responsible for securing and auditing information systems; auditors who wish to demonstrate technical knowledge of the systems they are responsible for auditing.

GIAC Systems and Network Auditors (GSNAs) have the knowledge, skills and abilities to apply basic risk analysis techniques and to conduct a technical audit of essential information systems.

Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 70% (105 of 150 questions) minimum passing score
Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Securing Oracle Certification (GSOC) - Retired

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Securing Oracle, SEC-509
Target:
Oracle database administrators responsible for installation and management of Oracle databases, developers who wish to create secure data access applications and web sites, and auditors and penetration testers who need to evaluate the security of Oracle databases.

Successful GIAC Securing Oracle Certification (GSOC) candidates will have the knowledge and skills to secure and audit an Oracle database.

Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 70% (105 of 150 questions) minimum passing score
Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Certified Penetration Tester (GPEN)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Network Penetration Testing and Ethical Hacking, SEC-560
Target:
The GPEN certification is for security personnel whose job duties involve assessing target networks and systems to find security vulnerabilities. Certification objectives include penetration-testing methodologies, the legal issues surrounding penetration testing and how to properly conduct a penetration test as well as best practice technical and non-technical techniques specific to conduct a penetration test.
Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 74.7% (112 of 150 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. A scientific passing point study was conducted for the exam. The passing point for the GPEN exam has been determined to be 74.7% for all candidates receiving access to their certification attempts on or after 12/22/2010.

Passing point information for all exams is defined in the "Read Me First" Certification Information presented before candidates start their exam.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Certified Project Manager Certification (GCPM)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Project Management and Effective Communications for Security Professionals and Managers, MGT-525
Target:
The GCPM certification is designed for security professionals and managers who participate in or lead project teams and wish to demonstrate an understanding of technical project management methodology and implementation. This certification affirms the critical skill sets associated with making projects successful, including effective communication, time, cost, quality, procurement and risk management of IT projects and application development.
Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 70% (105 of 150 questions) minimum passing score
Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Legal Issues (GLEG)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Law of Data Security and Investigations, LEG-523
Target:
Security and IT Professionals, Lawyers, Paralegals, Auditors, Accountants, Technology Managers or Vendors. Anyone interested in the law of business, contracts, fraud, crime, IT security, IT liability and IT policy with a focus on electronically stored and transmitted records.

Requirements:
1 proctored exam - 75 questions - 2-hour time limit - 70.7% (53 of 75 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. A scientific passing point study was conducted for the exam. The passing point for the GLEG exam has been determined to be 70.7% for all candidates receiving access to their certification attempts on or after 10/07/2010.

Passing point information for all exams is defined in the "Read Me First" Certification Information presented before candidates start their exam.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Certified Incident Manager (GCIM) - Retired

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Hacking for Managers, MGT504
Target:
Managers responsible for supervising incident handling/incident response; individuals who require an understanding of the current threats to systems and networks, along with effective countermeasures and how to manage these tasks.

GIAC Certified Incident Managers (GCIMs) have the knowledge, skills, and abilities to manage those who manage incidents. They have a firm understanding of the common attack techniques and tools and know how to successfully manage the people and procedures that respond to such attacks when they occur.

Requirements:
One proctored exam - 150 questions - 4 hour time limit
Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Secure Software Programmer - C (GSSP-C) - Retired

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Secure Coding in C: Developing Defensible Applications, C
Target:
Individuals who are responsible for coding secure software applications, identifying shortfalls in the security knowledge of other programmers, ensuring other programmers have adequate secure coding skills, and advanced secure programming skills.
The GIAC Secure Software Programmers certification allows candidates to demonstrate mastery of the security knowledge and skills needed to deal with common programming errors that lead to most security problems.

GIAC Certified secure software programmers (GSSP) have the knowledge, skills, and abilities to write secure code and recognize security shortcomings in existing code.

Requirements:
1 proctored exam - 100 questions - 4-hour time limit - 63% (63 of 100 questions) minimum passing score
Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Secure Software Programmer - Java (GSSP-JAVA)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Secure Coding in Java/JEE: Developing Defensible Applications, JAVA
Target:
Individuals who are responsible for coding secure software applications, identifying shortfalls in the security knowledge of other programmers, ensuring other programmers have adequate secure coding skills, and advanced secure programming skills.
The GIAC Secure Software Programmers certification allows candidates to demonstrate mastery of the security knowledge and skills needed to deal with common programming errors that lead to most security problems.

GIAC Certified secure software programmers (GSSP) have the knowledge, skills, and abilities to write secure code and recognize security shortcomings in existing code.

Requirements:
1 proctored exam - 75 questions - 3-hour time limit - 73.3% (55 of 75 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. All candidates receiving access to their certification attempt or after 12/22/10 will receive an exam that is 75 questions with a three hour time limit.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

GIAC Certified Forensics Examiner (GCFE)

Type:
Certification
Course:
*No Specific training is required for any GIAC certification. If candidates need help in mastering the objectives for this certification, there are many sources of information available. Practical experience is one option; there are also numerous books on the market covering Computer Information Security. Another option is SANS training, or any relevant courses from other training providers.*

More information regarding relevant training from SANS can be found at:
Computer Forensic Investigations - Windows In-Depth, FOR-408
Target:
The GCFE certification is for professionals working or interested in the information security, legal and law enforcement industries with a need to understand computer forensic analysis. The certification focuses on core skills required to collect and analyze data from Windows computer systems.

The GCFE certifies that candidates have the knowledge, skills, and ability to conduct typical incident investigations including e-Discovery, forensic analysis and reporting, evidence acquisition, browser forensics and tracing user and application activities on Windows systems.

Requirements:
1 proctored exam - 150 questions - 4-hour time limit - 71.3% (107 of 150 questions) minimum passing score
GIAC reserves the right to change the specifications for each certification without notice. A scientific passing point study was conducted for the exam. The passing point for the GCFE exam has been determined to be 71.3% for all candidates receiving access to their certification attempts on or after 09/29/2010.

Passing point information for all exams is defined in the "Read Me First" Certification Information presented before candidates start their exam.

Renewal:
Every 4 years
Delivery:
NOTE: GIAC exams are NOT given the day after the conference ends.

Exams are delivered online through a standard web browser. For exams purchased with SANS training, access to the exam will be available 7-10 days following the end of the conference. Standalone challenge exams are issued within 24 hours upon receipt of payment. You will receive an email from GIAC when your exam has been issued to your portal account. You have 120 days to complete the exam from the time we send notice that it is available. The exams are proctored and should be scheduled using our proctored exam procedure.

Exam fees

  • GIAC Security Expert (GSE) Multiple Choice ($0) - GSE Certification Information $399 Fee to be paid once application is approved.
  • Advanced Exploit Development ($-100) - Certification Information
  • Secure Coding Skills Assessment: .NET - 50 Questions ($349)
  • Secure Coding Skills Assessment: C - 100 Questions ($349)
  • Secure Coding Skills Assessment: C - 50 Questions ($349)
  • Secure Coding Skills Assessment: Java - 100 Questions ($349)
  • Secure Coding Skills Assessment: Java - 50 Questions ($349)
  • GIAC Auditing Wireless Networks (GAWN) ($899) - GAWN Certification Information
  • GIAC Certified Firewall Analyst (GCFW) ($899) - GCFW Certification Information
  • GIAC Certified Incident Handling Analysts (GCIH) ($899) - GCIH Certification Information
  • GIAC Certified Intrusion Analysts (GCIA) ($899) - GCIA Certification Information
  • GIAC Certified UNIX Administrator (GCUX) ($899) - GCUX Certification Information
  • GIAC Certified Windows Security Administrator (GCWN) ($899) - GCWN Certification Information
  • GIAC Information Security Professional (GISP) ($899) - GISP Certification Information
  • GIAC Penetration Tester Certification (GPEN) ($899) - GPEN Certification Information
  • GIAC Secure Software Programmer-.NET (GSSP-.NET) ($899) - GSSP-.NET Certification Information
  • GIAC Secure Software Programmer-Java (GSSP-JAVA) ($899) - GSSP-JAVA Certification Information
  • GIAC Security Essentials Certification (GSEC) ($899) - GSEC Certification Information
  • GIAC Systems and Network Auditor (GSNA) ($899) - GSNA Certification Information
  • GIAC Web App Penetration Testing and Ethical Hacking (GWAPT) ($899) - GWAPT Certification Information
  • GIAC Certified ISO-17799 Specialist (G7799) ($899) - G7799 Certification Information
  • GIAC Security Leadership Certification (GSLC) ($899) - GSLC Certification Information
  • GIAC Information Security Fundamentals (GISF) ($899) - GISF Certification Information
  • GIAC Certified Forensic Analyst (GCFA) ($899) - GCFA Certification Information
  • Reverse-Engineering Malware: Malware Analysis Tools and Techniques ($899) - GREM Certification Information

Contact Details:

Mr. Vijay

Mobile: 0 94400 89341

Phone: 040-6456 8797

Register Online: moc.snoitulosdnimartceps|ofni#moc.snoitulosdnimartceps|ofni
Email: ni.oc.oohay|pmpaqscyajiv#ni.oc.oohay|pmpaqscyajiv

Yahoo chat : vijaycsqapmp
Google chat/Skype chat/AOL chat/ICQ chat : tiptopten2000
Hotmail/Live chat / Rediff chat : tiptopten

Unless otherwise stated, the content of this page is licensed under Creative Commons Attribution-ShareAlike 3.0 License