Why to create a certification process too?
Printed From: One Stop Testing
Category: Types Of Software Testing @ OneStopTesting
Forum Name: Security Testing @ OneStopTesting
Forum Discription: Discuss All that is need to be known about Security Testing, All Security Issues and its Tools.
URL: http://forum.onestoptesting.com/forum_posts.asp?TID=86
Printed Date: 29Dec2024 at 7:05am
Topic: Why to create a certification process too?
Posted By: Amrita
Subject: Why to create a certification process too?
Date Posted: 17Feb2007 at 10:01am
Why to create a certification process too?
The certification process evolved. A need happened which was to do
security testing reliably. There are a lot of people with these
knowledge certs (the kind that requires knowing or memorizing
something) and they didn't seem to get it. They just all made these
horrible mistakes when it came to testing. Oh sure, they poked holes
and penetrated but were completely incapable of actually really testing
security. It was like they tried to light up all the holes in Swiss
cheese with a pocket flashlight from 100 meters away. Sure, some holes
got exposed but so many more didn't. So we decided to make sure that if
we did a certification that it would have to ask the candidates to
prove what they know by doing something. So we made the first
walk-the-walk security certification of its kind. I'm happy we did it
because it adds professionalism and legitimacy to this actually nascent
field of security testing. Now it's not sparkly or fancy like
certifications on penetration testing or ethical hacking because it's
about getting the job done. It's hard work to pass them. It's the
difference between rolling up your sleeves to work better and rolling
them up to look like you are working. We prefer to help those who
really need security and not just look like they have it for compliancy
reasons.
|
|