Donald Korinchak, MBA, PMP, CISSP, CASP, ITILv3 When a company issues a patch to fix security issues the bad guys start salivating. They know that in many cases they now have the opportunity to take advantages of vulnerabilities that the previously did not know about. Hackers can easily reverse engineer patches. When a patch is released a hacker will first review the … Read more
I decided to take the CASP exam for only one reason… There is only one reason that I initially took the CASP exam instead of the CISSP. I did not make the decision logically. I did not know the real differences between the tests. I took the CASP test first because I thought it would … Read more
We analyzed the job postings, crunched the data, and determined the actual value of the CISSP certification to list the top 20 US cities for CISSP certification holders. The monetary value of having the CISSP certification is dependent on your job market. If you obtain the CISSP certification and live in a city that has … Read more
If you work in the cybersecurity field, then you know that there are only four types of people: People who passed the CISSP exam People who are studying for the CISSP exam People who failed the CISSP exam People who are too fearful of taking the exam Having the CISSP certification is a must if … Read more
The vast majority of current CISSPs took their test in the old format. The test was a grueling 250 question test in which nearly 85% of the testers would take the entire allotted 6 hour exam time. But the exam was modernized at the end of 2017 The CISSP exam is now a “Smart Exam” … Read more
Personal information from about 500,000,000 people who made reservations at a Starwood hotel was stolen by hackers. These hotels include Sheraton, Aloft, W Hotels, and Westin Hotels. Marriott acquired the Starwood Group back in 2016, but the compromise started way back in 2014 before the acquisition took place. Hackers had full access for four years … Read more
Are you thinking about doing a mid-career transition to a cybersecurity position? It is a great field to join. There are currently millions of unfilled cybersecurity jobs in the US and countless more around the world. There are not enough qualified applicants to fill these jobs. Because qualified applicants are limited, the salaries for cybersecurity … Read more
Why Passwords Suck Usernames and Passwords are not secure by nature. Usernames and Passwords are controls that rely on “Something you know.” Knowledge is easily transferable, and therefore, passwords are not secure. No amount of security training will eliminate or overcome human nature. It is human nature to make passwords we can easily remember. Passwords … Read more
How does the PMP exam compare to the CISSP exam? When someone asked me that question, I thought it was rather odd. How can you compare the PMP to the CISSP? These are two completely different tests on two completely different subjects. The PMP exam covers project management while the CISSP exam covers cybersecurity. But … Read more
The Comptia Security+ exam isn’t that easy! I was recently at a family reunion, and I was talking to my cousin, who does IT work for the military. He was getting prepared to leave the military within a few years to transition into civilian work. I asked him if he had any IT certifications. “No, … Read more
Hardware Encryption is not Secure A Little History… In the past, it was assumed that hardware encryption is far more secure than software encryption. Many people, including security experts, still believe this to be true. And in the past, it was true. But recent history has proven that hardware encryption is highly vulnerable. The widely … Read more
Reading is not my best learning style. In today’s world of podcasts and audiobooks, I believe that fewer and fewer people are accustomed to learning by reading and writing. For me, this is undoubtedly the case. I love learning through audiobooks and video training. I used these learning methods exclusively to pass some challenging IT … Read more