ISACA’S CYBERSECURITY NEXUS (CSX)ITS Surabaya 17 Maret 2016 Presented by Sarwono Sutikno, Dr.Eng.,CISA,CISSP,CISM Edisi.April 2015

EXECUTIVE OVERVIEWCybersecurity Skills Crisis

Market Need is Clear:• ISACA & RSA State of Cybersecurity: Implications for 2015 survey• ISACA 2015 Global Cybersecurity Status Report Highlights• ISACA Student Poll

CSX Roadmap: CSX Training and Certifications CSX Resources CSX 2015, Washington DC Career Management Evolving Resources and Tools

ABOUT ISACAAssuring trust in a dynamically changing digital world

Global association serving 140,000 cybersecurity, assurance, governance and risk professionals

Members in 180 countries; 200+ chapters worldwide

Launched Cybersecurity Nexus (CSX) in 2014 to address growing cybersecurity skills crisis and develop a skilled cyber workforce Skills-based training Performance-based certifications

Developed and maintains the COBIT framework

Offers the CISA, CISM, CGEIT and CRISC certifications

CYBERSECURITY: MARKET NEED• Cybersecurity is a top global concern. 82% of enterprises

expect to experience a cyber incident in 2015

• More than 35% are unable to fill open cybersecurity positions

• 69% say certification is required for cybersecurity jobs

• 33% say qualified candidates have hands-on experience

• 46% say technical skills are needed

• There is a cybersecurity skills crisis: 1 million unfilled jobs (source: Cisco)

• The research is clear. Cybersecurity has evolved from critical topic into a public safety issue

STATE OF CYBERSECURITY: IMPLICATIONS FOR 2015

www.isaca.org/state-of-cybersecurity-2015

ISACA and RSA CONFERENCE JOINT SURVEY—649 RESPONDENTS WORLDWIDE

2015 GLOBAL CYBERSECURITY STATUS REPORT

www.isaca.org/cybersecurityreport

3,400+ RESPONDENTS WORLDWIDE

Do you feel that you will have adequate cybersecurity knowledge to do the type of job you are seeking when

you graduate?

Yes (47%)

No (22%)

Unsure (29%)

I do not need cyber-security knowledge for the job I am seek-ing (2%)

ISACA STUDENT POLL

No (7%)

Unsure (19%)

Yes (74%)

0% 20% 40% 60% 80%

Do you plan to pursue a cybersecurity related certificate or certification?

88% of students plan to work in a field or job that requires some level of cybersecurity knowledge after graduation.

CSX: THE ROADMAP

ISACA AND CSX AT THE FOREFRONT

10

ISACA and CSX are Leaders in Cybersecurity Career Management

• Cybersecurity is a natural extension building on how ISACA has evolved to serve the needs of professionals worldwide

• ISACA collaborates with leading global governments and organizations at the center of cybersecurity

• Through CSX, ISACA is providing the first holistic program for cybersecurity career progression

OUR SOLUTION

11

CSX Is Providing a Single Source for Cybersecurity Professionals: our holistic program will be the first and only “one stop shop” providing a complete solution and covering the full career lifecycle.

Credentialing and Training

Education/ Conferences

Membership Resources/ Publications

Career Management

CAREER PATH: CYBERSECURITY CERTIFICATIONS

www.isaca.org/csx-certifications

CSX training and certifications offered for

skill levels and specialties throughout a professional’s career.

CAREER PATH: CYBERSECURITY CERTIFICATIONS

CSX Practitioner—Demonstrates ability to serve as a first responder to a cybersecurity incident following established procedures and defined processes. (1 certification, 3 training courses; prerequisite for CSX Specialist)

CSX Specialist—Demonstrates effective skills and deep knowledge in one or more of the five areas based closely on the NIST Cybersecurity Framework: Identify, Detect, Protect, Respond and Recover. (5 certifications, 5 training courses; requires CSX Practitioner)

CSX Expert—Demonstrates ability of a master/expert-level cybersecurity professional who can identify, analyze, respond to, and mitigate complex cybersecurity incidents. (1 certification, 1 training course; no prerequisites required)

Certified Information Security Manager certification (25,000+ professionals certified since inception; named the second-highest-paying certification by Global Knowledge’s 2015 IT Skills and Salary Survey; 5+ years experience required)

www.isaca.org/cyber-con#CSXNA

19-21 October 2015

Washington, DC, USA

70+ sessions tailored by career level

CSX ELEMENTS: ROADMAP• Cybersecurity standard for small-to-medium enterprises• Computer forensics guide• Career management road map• 2015 APT study• Threats and opportunities tool

WWW.ISACA.ORG/CYBERCONTACT: CSX@ISACA.ORG