|
發證單位
|
證照清單
|
說明
|
1
|
(ISC)2 國際資訊系統安全核准聯盟
|
1. Certified Information Systems Security Professional(CISSP)
2. Systems Security Certified Practitioner(SSCP)
3. Certified Cloud Security Professional(CCSP)
4. Certified Authorization Professional(CAP)
5. Certified Secure Software Lifecycle Professional(CSSLP)
6. HealthCare Information Security and Privacy Practitioner(HCISPP)
7. Information Systems Security Architecture Professional(CISSP -ISSAP)
8. Information Systems Security Engineering Professional(CISSP -ISSEP)
9. Information Systems Security Management Professional(CISSP -ISSMP)
|
本證照主要在檢核考生是否具備資訊安全架構、設計及管理能力,考試重點包含:資安工作的日常維運能力、雲端安全管理能力,或是測驗軟體開發相關人員對於軟體生命週期、漏洞、風險、資訊安全基本知識與法規遵循等各方面知識的了解與認知程度等。
|
2
|
The Computing Technology Industry Association (CompTIA)
|
1. CompTIA Security (CompTIA Security+)
2. CompTIA Cybersecurity Analyst (CySA+)
3. CompTIA Advanced Security Practitioner (CASP+)
4. CompTIA PenTest (CompTIA PenTest+)
|
本證照提供考生檢核是否具備資訊安全基礎技術及核心能力,考試重點包含:攻擊威脅、網路架構安全、弱點與稽核、通訊安全對策、密碼學、授權與存取控制、安全政策與管理、作業安全與營運持續計畫等
|
3
|
CREST
|
1. Penetration Testing
(1). The CREST Practitioner Security Analyst (CPSA)
(2). The CREST Certified Wireless Specialist (CCWS)
2. Simulated Target Attack & Response/CBEST
(1). The CREST Certified Simulated Attack Specialist (CCSAS)
(2). The CREST Certified Simulated Attack Manager (CCSAM)
(3). The CREST Registered Threat Intelligence Analyst (CRTIA)
(4). The CREST Certified Threat Intelligence Manager (CCTIM)
3. Incident Response
(1). The CREST Practitioner Intrusion Analyst (CPIA)
(2). The CREST Registered Intrusion Analyst (CRIA)
(3). The Certified Network Intrusion Analyst (CCNIA)
(4). The CREST Certified Host Intrusion Analyst (CCHIA)
(5). The CREST Certified Malware Reverse Engineer (CCMRE)
(6). The CREST Certified Incident Manager
4. Security Architecture
(1). The CREST Registered Technical Security Architect Examination (CRTSA)
|
本證照提供考生檢核是否具備網路安全防護及資安分析知識,並驗證考生是否具備滲透測試、駭客攻防、事故應變處理、與安全架構規劃相關能力。
|
4
|
EC-Council
|
1. Certified Network Defender Course (CND)
2. Certified Ethical Hacker(CEH)
3. EC-Council Certified Security Analyst(ECSA)
4. Computer Hacking Forensic Investigator(CHFI)
5. EC-Council Certified Incident Handler(ECIH)
6. EC-Council Disaster Recovery Professional(EDRP)
7. Certified Threat Intelligence Analyst (CTIA)
8. Certified Application Security Engineer (CASE)NET、JAVA
9. Certified Penetration Tester (CPENT)
10. Licensed Penetration Testing (LPT)
11. Certified SOC Analyst(CSA)
12. CEH (Master)
|
本證照提供各種電子商務與資訊安全技能的認證考試,考試重點包含:資安分析與滲透測試的理論、技巧、方法與工具、執行完整的資訊安全測試、防禦駭客與惡意人士的攻擊、滲透測試工具執行演練、攻擊鑑識、建立風險分析與備援計畫、網路安全政策制定、危機事件處理及法規與安全政策及應用程式安全等。
|
5
|
Global Information Assurance Certification (GIAC)
|
1. Cloud Security
(1). GIAC Cloud Security Essentials (GCLD)
(2). GIAC Certified Web Application Defender (GWEB)
(3). GIAC Cloud Security Automation (GCSA)
(4). GIAC Public Cloud Security (GPCS)
2. Cyber Defense
(1). GIAC Open Source Intelligence (GOSI)
(2). GIAC Certified Intrusion Analyst (GCIA)
(3). GIAC Certified Windows Security Administrator (GCWN)
(4). GIAC Continuous Monitoring Certification (GMON)
(5). GIAC Defensible Security Architecture (GDSA)
(6). GIAC Certified Detection Analyst (GCDA)
(7). GIAC Security Operations Certified (GSOC)
(8). GIAC Information Security Fundamentals (GISF)
(9). GIAC Security Essentials (GSEC)
(10). GIAC Certified Enterprise Defender (GCED)
(11). GIAC Certified Incident Handler (GCIH)
(12). GIAC Foundational Cybersecurity Technologies Certification (GFACT)
(13). GIAC Defending Advanced Threats (GDAT)
3. Offensive Operations
(1). GIAC Enterprise Vulnerability Assessor (GEVA)
(2). GIAC Penetration Tester (GPEN)
(3). GIAC Web Application Penetration Tester GWAPT)
(4). GIAC Python Coder (GPYC)
(5). GIAC Mobile Device Security Analyst (GMOB)
(6). GIAC Cloud Penetration Tester (GCPN)
(7). GIAC Assessing and Auditing Wireless Networks (GAWN)
(8). GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
4. Digital Forensics and Incident Response
(1). GIAC Battlefield Forensics & Acquisition (GBFA)
(2). GIAC Certified Forensic Examiner (GCFE)
(3). GIAC Advanced Smartphone Forensic (GASF)
(4). GIAC Certified Forensic Analyst (GCFA)
(5). GIAC Network Forensic Analyst (GNFA)
(6). GIAC Cyber Threat Intelligence (GCTI)
(7). GIAC Reverse Engineering Malware (GREM)
5. Industrial Control Systems
(1). GIAC Global Industrial Cyber Security Professional (GICSP)
(2). GIAC Response and Industrial Defense (GRID)
(3). GIAC Critical Infrastructure Protection (GCIP)
6. GSE
(1). GIAC Security Expert(GSE)
|
本證照針對IT經理及資安管理人員提供考試,提供考生檢核是否具備資訊安全防護能力,考試重點包含:網路防護、滲透測試、資安事故應變與鑑識、開發、工控系統安全相關知識與技能。
|
7
|
The International Society of Forensic Computer Examiners (ISFCE)
|
1. Certified Computer Examiner(CCE)
|
本證照提供考生檢核是否具備資訊安全概念及系統管理基本能力。
|
8
|
Offensive Security
|
1. Offensive Security Certified Professional(OSCP)
2. Offensive Security Certified Expert(OSCE)
3. Offensive Security Wireless Professional(OSWP)
4. Offensive Security Exploitation Expert(OSEE)
5. Offensive Security Web Expert(OSWE)
6. Offensive Security Exploit Developer (OSED)
7. Offensive Security Experienced Penetration Tester(OSEP)
|
本證照提供考生檢核是否具備滲透測與相關工具使用、漏洞挖掘、無線網路安全、網頁安全等技術能力,高階證照包括了長時間的線上考試。
|
9
|
Cisco
|
1. CCNA 200-301 Implementing and Administering Cisco Solutions
2. CBROPS 200-201 Cisco Certified CyberOps Associate certification
|
本證照提供考生檢核是否具備Cisco基本網路安全環境的建置部署以及維護的技術能力。
|
10
|
經濟部
|
1. iPAS 資訊安全工程師中級能力鑑定
|
本證照提供給產業年資1-3年之從業人員,檢核考生是否具備資訊安全管理實務及資訊安全防護實務能力,並檢核考試是否有能力將相關知識與技能應用於實務作業。
|
11
|
ISA
|
1. ISA/IEC 62443 Cybersecurity Design Specialist
2. ISA/IEC 62443 Cybersecurity Maintenance Specialist
3. ISA/IEC 62443 Cybersecurity Expert
|
本證照考試主要設計來透過訓練課程及認證考試,檢核考生是否具備工業通信網路-網路和系統的IT安全性,如:資訊安全相關技術、網路防護、資安事故應變與鑑識。
|