ISACA’S CYBERSECURITY NEXUS (CSX)April 2015presented by Sarwono Sutikno, Dr.Eng.,CISA,CISSP,CISM – CSX Liaison ISACA Indonesia

EXECUTIVE OVERVIEW

Cybersecurity Skills Crisis

Market Need is Clear:• ISACA & RSA State of Cybersecurity: Implications for 2015 survey

• ISACA 2015 Global Cybersecurity Status Report Highlights

• ISACA Student Poll

CSX Roadmap: CSX Training and Certifications

CSX Resources

CSX 2015, Washington DC

Career Management

Evolving Resources and Tools

ABOUT ISACA

Assuring trust in a dynamically changing digital world

Global association serving 140,000 cybersecurity, assurance,

governance and risk professionals

Members in 180 countries; 200+ chapters worldwide

Launched Cybersecurity Nexus (CSX) in 2014 to address

growing cybersecurity skills crisis and develop a skilled cyber

workforce

Skills-based training

Performance-based certifications

Developed and maintains the COBIT framework

Offers the CISA, CISM, CGEIT and CRISC certifications

CYBERSECURITY: MARKET NEED

• Cybersecurity is a top global concern. 82% of enterprises

expect to experience a cyber incident in 2015

• More than 35% are unable to fill open cybersecurity positions

• 69% say certification is required for cybersecurity jobs

• 33% say qualified candidates have hands-on experience

• 46% say technical skills are needed

• There is a cybersecurity skills crisis: 1 million unfilled jobs (source: Cisco)

• The research is clear. Cybersecurity has evolved from critical

topic into a public safety issue

STATE OF CYBERSECURITY: IMPLICATIONS FOR 2015

www.isaca.org/state-of-cybersecurity-2015

ISACA and RSA CONFERENCE JOINT SURVEY—649 RESPONDENTS WORLDWIDE

2015 GLOBAL CYBERSECURITY STATUS REPORT

www.isaca.org/cybersecurityreport

3,400+ RESPONDENTS

WORLDWIDE

Do you feel that you will have adequate cybersecurity knowledge to do the type of job you are seeking when

you graduate?

Yes (47%)

No (22%)

ISACA STUDENT POLL

0% 50% 100%

No (7%)

Unsure (19%)

Yes (74%)

Do you plan to pursue a

cybersecurity related

certificate or certification?

88% of students plan to work

in a field or job that requires

some level of cybersecurity

knowledge after graduation.

CSX: THE ROADMAP

ISACA AND CSX AT THE FOREFRONT

10

ISACA and CSX are Leaders in Cybersecurity Career Management

• Cybersecurity is a natural extension building on how ISACA has

evolved to serve the needs of professionals worldwide

• ISACA collaborates with leading global governments and organizations

at the center of cybersecurity

• Through CSX, ISACA is providing the first holistic program for

cybersecurity career progression

OUR SOLUTION

11

CSX Is Providing a Single Source for Cybersecurity Professionals: our holistic

program will be the first and only “one stop shop” providing a complete solution and

covering the full career lifecycle.

Credentialing

and Training

Education/

Conferences

Membership Resources/

Publications

Career

Management

CAREER PATH: CYBERSECURITY CERTIFICATIONS

www.isaca.org/csx-certifications

CSX training and

certifications offered for

skill levels and

specialties throughout a

professional’s career.

CAREER PATH: CYBERSECURITY CERTIFICATIONS

CSX Practitioner—Demonstrates ability to serve as a first responder to a

cybersecurity incident following established procedures and defined processes.

(1 certification, 3 training courses; prerequisite for CSX Specialist)

CSX Specialist—Demonstrates effective skills and deep knowledge in one or

more of the five areas based closely on the NIST Cybersecurity Framework:

Identify, Detect, Protect, Respond and Recover. (5 certifications, 5 training

courses; requires CSX Practitioner)

CSX Expert—Demonstrates ability of a master/expert-level cybersecurity

professional who can identify, analyze, respond to, and mitigate complex

cybersecurity incidents. (1 certification, 1 training course; no prerequisites

required)

Certified Information Security Manager certification (25,000+

professionals certified since inception; named the second-highest-paying

certification by Global Knowledge’s 2015 IT Skills and Salary Survey; 5+

years experience required)

www.isaca.org/cyber-con

#CSXNA

19-21 October 2015

Washington, DC, USA

70+ sessions tailored

by career level

CSX ELEMENTS: ROADMAP

• Cybersecurity standard for small-to-medium enterprises

• Computer forensics guide

• Career management road map

• 2015 APT study

• Threats and opportunities tool

www.isaca.org/cyberContact: csx@isaca.or.id