CESG adopts new security assurance skills framework

CESG is looking to boost the professional standards of information assurance professionals in the public sector by adopting the skills framework of the Institute of Information Security Professionals (IISP).

Share

CESG is looking to boost the professional standards of information assurance professionals in the public sector by adopting the skills framework of the Institute of Information Security Professionals (IISP).

As the National Technical Authority for Information Assurance (IA) across the public sector, CESG plans to measure the competence of IA professionals involved in the delivery of public sector services against the framework. The agreement also allows the CESG to add to the framework if necessary.

The CESG said that the Government’s Skills Framework for the Information Age (SFIA) did not “adequately” cover IA-related skills.

Chris Ensor, head of profession for IA at CESG, said: “We will now use it [the IISP framework] to formalise IA roles and as the basis for organisations to certify people, education and training.”

Professor Paul Dorey, Chairman of the IISP added: “The criticality of risks to information systems has taken us beyond the stage where security skills can be just picked up by chance. We see increasing numbers of companies, and now government departments, requiring certification of professional competence, just like engineers and doctors.”

 

 

Find your next job with computerworld UK jobs