Computer Forensics, Ethical Hacking & Network Security Training
Many of us have seen the "CSI: Crime Scene Investigation" TV Show - and there's no doubt that this series and it's offshoots have highlighted and glamorised the Digital Forensics industry somewhat. The terms Computer or Digital Forensics basically describe the science of finding and analysing digital data from computers and all types of storage media, generally to form part of a legal case. Since the evidence has to often stand up in court, it has to be collected, logged, analysed, presented and dealt with in very particular ways. One of the most important aspects of this being the accurate collection of evidence - and the chain of custody from the crime scene through to the court.
There are many sub-branches or specialities of Digital Forensics which include mobile device forensics, database forensics, firewall and data switch/router forensics and of course network forensics.
In essence, there are five main parts to the Digital Forensics process: Preparation, Data Collection, Examination, Analysis and Reporting.
Any Computer Forensics Investigator needs to be fully and properly trained to carry out the specific tasks required. The main goal of Computer Forensics is to trace and explain what is known as a 'digital artefact'. This can be a whole system, a piece of storage medium, or an electronic document such as an email or image.
It could even be the digital remnants of the movement of data - building an audit trail of what went where and when. Many crimes are solved these days by an offender unwittingly leaving a digital 'footprint' somewhere down the line. There are documented cases of serial killers being found because of a snippet of information found in an email trail.
Other areas where Computer Forensics contribute are: Legal (both criminal and civil) cases; specialised data recovery where the media has failed or been damaged; evidence gathering for employment termination; and analysis following a 'hack' attack to determine what went wrong.
Network Security & Computer Forensics Certification Tracks
There are a number of specialist certifications that cover these specialist topics,
but many require a considerable level of background IT security experience before
the actual certification is conferred.
The CEH (Certified Ethical Hacker) and CHFI (Computer Hacking Forensic Investigator) are mid-high level certifications offered through the EC Council.
The Ethical Hacker Certification requires 2 years of experience in the information security field and you would normally be expected to hold either an MCSA or CCNA or equivalent. As such, these programs are certainly not for the new IT career changer, although they could be studied purely for the knowledge, with the understanding that experience will be required to complete the program. It should be stressed that these are NOT starter programs though.
Our recently updated FREE 150+ page Lollypedia tells you everything you need to know about commercial IT Training & Certification, including:
Our Complete Product Breakdown & UK Price List
Monthly Training Programs (No Credit Checks)
Which IT Career Paths Are Available
What Each Job/Sector Involves - Is IT For You?
Comparing User Skills vs Career Skills Training
Personal Career Guidance and Analysis Tools
Interview & CV Advice
IT Industry FAQ's (Frequently Asked Questions)
Details On Our Job Search Assistance Program
How To Obtain Professional Industry Advice Via The Telephone
The EC Council also recommends completion of the CEH before attempting the CHFI. Following this, the ECSA Security Analyst program will add the other required area to elevate yourself towards the celebrated LPT: Licensed Penetration Tester - probably one of the most prestigious security certifications available.
The CISSP (Certified Information Systems Security Professional) is another mid level certification offered via ISC2 (International Information Systems Security Certification Consortium.) Achieving certification requires proving 4-5 years in the information security field, although you can register for the Associate of ISC2 immediately.
This means that studying for the CISSP can start much earlier - and since our CISSP programs cover the CompTIA Security+ syllabus, the CompTIA certification can be taken immediately, allowing access into the security field where experience can be gained.
If a student is new to the field of IT then you undoubtedly want to preface this certification with the CompTIA A+ & Network+ to ensure a full understanding of basic networking prior to taking the Security+ and then moving on to the CISSP.
For those who are new career-changers to IT, but want to move towards security, ethical hacking or forensics, there are also a small selection of introductory Computer Forensics courses which would sandwich nicely with a CompTIA/CISSP Security training track and allow a paced but gradual move into the industry. A move that could later include the CEH/CHFI programs - once some experience has been added.
| BACK: IT Certification | ALTERNATIVELY: Network Security Training Courses |