Holistic Information Security Practitioner

From Wikipedia, the free encyclopedia
Jump to: navigation, search

The Holistic Information Security Practitioner certification course is an integration course that provides practical education on the integration of best practices for Information Security Management, Information Systems Auditing, and multiple Regulatory Compliance requirements as well as how to map multiple regulatory requirements to the internationally accepted framework of ISO/IEC 27002. The class introduces ISO/IEC 27002:2013, CobiT, COSO and ITIL, and then explains a methodology to map regulations such as Data Protection Act 1998 (UK), EU Directive on Privacy, Basel II, HIPAA, U.S. Federal Financial Institutions Examination Council, GLB Act, FIPS 200, Sarbanes-Oxley, FACT Act, PCI Data Security, California SB 1386, OSFI, PIPEDA, PIPA, Canadian Bill C-168 to the ISO 27002 framework.

The Holistic Information Security Practitioner (HISP) Certification Course was originally authored by eFortresses, Inc.: an Atlanta, Georgia based Cyber Security & Governance, Risk management and Compliance solutions company, specializing in Information Security and Regulatory Compliance. The training aspect of the HISP Certification Course was delivered by eFortresses and a number of authorized training partners including BSI Management Systems, however the certification aspect is managed exclusively by the Holistic Information Security Practitioner Institute, an independently run organization.

The Holistic Information Security Practitioner Institute is also the oversight body of the Cloud Assurance Assessor Program (CAAP). The CAAP provides assurance of the qualifications for those purporting to have the necessary skills as independent Cloud Assessors.

External links[edit]