INFORMATION SECURITY IS BECOMING more complex. As new and more capable software and hardware products emerge, attackers find more vulnerabilities. In the process, it becomes more difficult for security professionals to stay current. In addition, it becomes more difficult for employers to identify people who are qualified to keep their organizations’ systems secure.

Today one of the most common methods for identifying the skills a security professional possesses is certification. A certification proves that the holder has obtained a measurable level of competency. It also may prove that the holder has a certain level of experience and has passed an examination. Each certification ...