The Register® — Biting the hand that feeds IT

Feeds

GCHQ's CESG CCP 4 UK GOV IT BFFs? LOL RTFA INFOSEC VIPs ASAP

Yet another security certificate fiddled with by Brit spooks

By John Leyden, 1st October 2013
11

Supercharge your infrastructure

Britain's global eavesdropping nerve-centre GCHQ hopes to turn its certificates of IT security competence into an industry standard - by awarding them to bods in the private as well as public sector.

The CESG (Communications-Electronics Security Group) Certified Professional scheme (CCP) was launched in October, and is handed out to suitably skilled tech pros working for the UK government. Only civil servants and those working on UK govt contracts could apply, but this has now been extended beyond the walls of Whitehall.

Candidates can achieve practitioner, senior practitioner and lead practitioner status across six key roles: security and information risk advisor; information architect (IA) accreditor; IA architect; IA auditor; IT security officer; and communications security roles. The CCP scheme will run in parallel with the IISP’s* own professional development and certification programme.

Three independent certification bodies for the CCP scheme, each appointed and audited by CESG, have been established. The three groups are: the APM Group; the IISP, CREST* and Royal Holloway ISG consortium; and BCS, the chartered institute for IT workers.

Nearly 700 security professionals responsible for securing UK government networks have been accredited so far. The CCP scheme is part of Blighty's wider "Cyber Security Strategy", which is designed to make Britain more secure against electronic attacks and make it the best place to do e-commerce worldwide. Presumably, infiltrating on a Belgian telco, undermining SSL certificates and VPNs, and assisting the NSA's global internet dragnet fits in there, too.

The CCP certifications are valid for three years.

Ian Glover, president of CREST, added: "Private-sector organisations are already putting their staff through the security architecture examination, which is part of the CCP scheme. Extending the broader CCP scheme to the private sector is a very logical extension."

More details on the CCP scheme can be found here. ®

* IISP is the Institute of Information Security Professionals) while CREST is a professional body representing the security testing and cyber incident response industry.

5 ways to reduce advertising network latency

11 Reader Comments

Whitepapers

5 ways to reduce advertising network latency
Implementing the tactics laid out in this whitepaper can help reduce your overall advertising network latency.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Email delivery: 4 steps to get more email to the inbox
This whitepaper lists some steps and information that will give you the best opportunity to achieve an amazing sender reputation.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
5 ways to prepare your advertising infrastructure for disaster
Being prepared allows your brand to greatly improve your advertising infrastructure performance and reliability that, in the end, will boost confidence in your brand.
Search more Resources

More from The Register

next story
Chaos Computer Club: iPhone 5S finger-sniffer COMPROMISED
Anyone can touch your phone and make it give up its all
147
NSA in new SHOCK 'can see public data' SCANDAL!
What you say on Twitter doesn't stay on Twitter
79
Hardbitten NYC cops: Sir, I'm gonna need you to, er, upgrade to iOS 7
Yes, really
84
UK's Get Safe Online? 'No one cares' - run the blockbuster ads instead
Something like Jack Bauer's 24 ... whatever it'll take to teach kids how to bat away hackers
42
Hundreds of hackers sought for new £500m UK cyber-bomber strike force
Britain must rm -rf its enemies or be rm -rf'ed, declares defence secretary
48
London schoolboy cuffed for BIGGEST DDOS ATTACK IN HISTORY
Bet his parents wish he'd been playing computer games
36
RSA: That NSA crypto-algorithm we put in our products? Stop using that
Encryption key tool was dodgy in 2007, and still dodgy now
47
Would you hire a hacker to run your security? 'Yes' say Brit IT bosses
We don't have enough securo bods in the industry either, reckon gloomy BOFHs
24
The NSA's hiring - and they want a CIVIL LIBERTIES officer
In other news, the Spanish Inquisition want an equal opprtunities officer
47
'Occupy' affiliate claims Intel bakes SECRET 3G radio into vPro CPUs
Tinfoil hat brigade say every PC is on mobile networks, even when powered down
106
prev story