There’s a new certification in the industrial security space, that of Global Industrial Cyber Security Professional (GICSP). The certification was created as a collaborative effort by the Global Information Assurance Certification (GIAC) and members of a global industry consortium whose members design, deploy, operate, and maintain industrial automation and control system infrastructure.
The certification exam is based on achieving a minimum set of knowledge and capabilities that IT, engineers, and security professionals should know if they have a role in an ICS environment where they are responsible in any way for security.
Topics include access management, configuration and change management, cybersecurity essentials, disaster recovery and business continuity, ICS architecture, ICS modules and elements hardening, ICS security assessments, ICS governance and risk management, ICS security monitoring, incident management, industrial control systems, and physical security.
The GICSP proctored exam consists of 115 questions that must be taken within three hours. A minimum passing score of 69% is required. While there is no specific training course that is required, test candidates may take the SANS training available in Florida or Texas in 2014.
The actual test is available online and can be scheduled here. Once certification is achieved, it must be renewed every four years.
As you can tell, this subject, cybersecurity in industrial environments, is coming to the forefront rapidly. I would imagine that those who take the initiative to become certified as these opportunities hit the floor will benefit dramatically in the short and long term.