CISSP - IAT Level III

shillamus

Hello all. I am new here so I will jump right in.

We are seeking to get individuals IAT Level III Certified in accordance with DOD 8570.

As best as I have been able to interpret, having the CISSP cert (and work experience) qualifies an individual to be IAT III.

I would be grateful to anyone for sharing what the best training services are and approximate costs for CISSP. Also, where to take the test near Washington DC - Baltimore corridor would be very helpful.

Some services are offering "bootcamps" for about 2000$ you can go to class for five days and get a certified test.. etc. I don't see how those can be effective.

Also, it is not clear how the US governement recognizes the CISSP certification and qualifies an individual as IAT Level III. If anyone can share how that works it would be very helpful

Thanks of you can help and thanks to all who share here. I am grateful to have found you all today.

shillamus

I located Pearson Vue Test centers near me.

The test is 600$?? Are there any better prices on tests than that?

jt2929

I can't speak about the training as I self studied, but I had to submit proof of passing the exam to our government customers. I'm sure I'll have to provide proof during customer audits as well. Other certifications that qualify for IAT III are CASP, CISA, GCED, and GCIH. You can search on the Pearson Vue website for testing centers near your location.

As far as price goes, that is set by (ISC)2 and won't change. If the $600 tag is a concern, you may want to look at the other certifications.

beads

I am sure you have seen this page linking to the official (ISC)2 home page: https://www.isc2.org/default.aspx

Six hundred per attempt sounds cheap compared to the old days when you traveled, stayed over night then took the test in a room full of other examinees on a Saturday morning. On paper no less! Ugh! So much harder to pass as well. Today its considered an easy exam.

Go to Amazon.com, search for CISSP. Look for Harris AiO and Conrad in the listings. Should be roughly 1000 or so items for purchase. Read a few threads on how to pass the CISSP in a weekend or what have you. Study up and enjoy the certification ride.

- b/eads

ispep13

There is a training facility called Phoenix TS. I went to the location in Columbia, MD. I believe they have one in the NOVA area. The also have a CISSP prep class. I have taken a few boot camps with them.

TheFORCE

shillamus wrote: »

I located Pearson Vue Test centers near me.

The test is 600$?? Are there any better prices on tests than that?

You will not find any better prices for the CISSP. That's how everyone pays, but if you pass the exam, you can have yourcompany reimburse the fees. Many people go this route essentially paying $0. As Beads mentioned, the official isc2 website has all the information you will need.

CyberSecurity

Shillamus, though CISSP may be an IAT III certification it doesn't automatically make someone an IAT III. The technician must also hold the certification for the OS they're operating to be an IAT III for that specific system. Other IAT III certs that can also be used instead of CISSP are CISA, GCIH, GCED, or CASP, but must also be accompanied by the OS certs of the various OS's being utilized.

If you go to Section C3.5 (Page 29) of http://www.dtic.mil/whs/directives/corres/pdf/857001m.pdf you'll see at the bottom of the table it states IA Baseline Certification (CISSP for example) & CE/OS Certificate (RHEL for example). So yeah, both are required which probably makes the search for already qualified individuals a bit harder.


Just a heads up, the new cybersecurity workforce instruction was just released less than 2 weeks ago http://www.dtic.mil/whs/directives/corres/pdf/814001_2015_dodd.pdf
Unfortunately it doesn't go into specifics and the DoD is waiting with much anticipation for the SECNAV M-5239 which goes in detail regarding the 8140.01 and should be released in the near future.

Hope this helps

!nf0s3cure

Well there are several options depending upon where you fit in the bigger DoD picture. Few links to help you...

http://iase.disa.mil/Pages/index.aspx

https://ia.signal.army.mil/CISSP.asp

Look through these links and there are several options available.

8140 is still being developed with no release date yet.

Hope it helps.

shillamus

CyberSecurity wrote: »

Shillamus, though CISSP may be an IAT III certification it doesn't automatically make someone an IAT III. The technician must also hold the certification for the OS they're operating to be an IAT III for that specific system. Other IAT III certs that can also be used instead of CISSP are CISA, GCIH, GCED, or CASP, but must also be accompanied by the OS certs of the various OS's being utilized.

If you go to Section C3.5 (Page 29) of http://www.dtic.mil/whs/directives/corres/pdf/857001m.pdf you'll see at the bottom of the table it states IA Baseline Certification (CISSP for example) & CE/OS Certificate (RHEL for example). So yeah, both are required which probably makes the search for already qualified individuals a bit harder.


Just a heads up, the new cybersecurity workforce instruction was just released less than 2 weeks ago http://www.dtic.mil/whs/directives/corres/pdf/814001_2015_dodd.pdf
Unfortunately it doesn't go into specifics and the DoD is waiting with much anticipation for the SECNAV M-5239 which goes in detail regarding the 8140.01 and should be released in the near future.

Hope this helps

So I gather Hillary has stirred the IT world up?? No more private servers?

shillamus

!nf0s3cure wrote: »

Well there are several options depending upon where you fit in the bigger DoD picture. Few links to help you...

http://iase.disa.mil/Pages/index.aspx

https://ia.signal.army.mil/CISSP.asp

Look through these links and there are several options available.

8140 is still being developed with no release date yet.

Hope it helps.

Thanks !S