SandBP Certified Cybersecurity Professional (ISO 27032:2023; NIST CSF 2.0; CSI & CMMC 2.0)
- Home
- Certifications
- SandBP Certified Cybersecurity Professional (ISO 27032:2023; NIST CSF 2.0; CIS & CMMC 2.0)
Description
The term ISO/IEC 27032 refers to ‘Cybersecurity’ or ‘Cyberspace security,’ which is defined as the protection of privacy, integrity, and accessibility of data information in the Cyberspace. Therefore, Cyberspace is acknowledged as an interaction of persons, software and worldwide technological services.
The international standard ISO/IEC 27032 is intended to emphasize the role of different securities in the Cyberspace, regarding information security, network and internet security, and critical information infrastructure protection (CIIP). ISO/IEC 27032 as an international standard provides a policy framework to address the establishment of trustworthiness, collaboration, exchange of information, and technical guidance for system integration between stakeholders in the cyberspace.
Benefits of ISO 27032 Certification
- Protect the organization’s data and privacy from cyber threats
- Strengthen your skills in the establishment and maintenance of a Cybersecurity program
- Develop best practices to managing cybersecurity policies
- Improve the security system of organization and its business continuity
- Build confidence to stakeholders for your security measures.
-
ISO/IEC 27032 Foundation:
The ISO/IEC 27032 Foundation training course presents the fundamental cybersecurity concepts and principles based on ISO/IEC 27032 and NIST cybersecurity framework.
After completing this course, participants can sit for the exam. Once participants meet the pass mark, he/she will be given an “SandBP Certified ISO 27032 Foundation” credential. A SandBP Foundation Certificate shows that the participants have understood the fundamental methodologies, requirements, framework and management approach.
-
ISO/IEC 27032:2023 Cybersecurity Professional:
ISO/IEC 27032 Lead Cybersecurity Manager training enables you to acquire the expertise and competence needed to support an organization in implementing and managing a Cybersecurity program based on ISO/IEC 27032 and NIST Cybersecurity framework. During this training course, you will gain a comprehensive knowledge of Cybersecurity, the relationship between Cybersecurity and other types of IT security, and stakeholders’ role in Cybersecurity.
After mastering all the necessary concepts of Cybersecurity, participants can sit for the exam. Once participants meet the pass mark, he/she will be given an “SandBP Certified ISO 27032 Lead Cybersecurity Manager” credential. By holding an SandBP Lead Implementer Certificate, the participant can be able to demonstrate that he/she has the practical knowledge and professional capabilities to implement ISO 27032 in an organization.
- Introduction to Cybersecurity and related concepts as recommended by ISO/IEC 27032
- Cybersecurity policies, risk management and attack mechanisms
- Cybersecurity controls, information sharing and coordination
- Incident management, monitoring and continuous improvement
- Certification Exam
- PRE-REQUISITE: A fundamental understanding of ISO/IEC 27032 and comprehensive knowledge of Cybersecurity
Certification
- Candidates who score 70% and above in the examination will be issued an SANDBP certificate.
- In case you do not meet the pass mark, you can retake the exam for FREE after the first attempt while subsequent retakes would come at a cost.
Criteria for Suspending and Withdrawing the Scope of Certification
SANDBP reserves the right to suspend or revoke certifications for reasons including fraud, deceit, or submission of inaccurate data.
Process:
- Certificate holders will be notified by certified mail if evidence of charges is found.
- They may present their defense in writing to the certification board.
- The board will review the case and decide to uphold or deny the suspension/revocation.
Causes for Suspension/Withdrawal:
- Improper use of certificates/logos
- Malpractices
- Providing false information
- Ineligibility for applied examinations
- Voluntary suspension requests
Recertification Process
Recertification ensures that certified individuals maintain their knowledge and skills in line with the latest standards and practices. It is a critical process that reaffirms the competency of certified professionals, allowing them to stay current with evolving industry standards.
Criteria for Recertification:
-
Transition Exam:
* Individuals must take and pass a transition exam when there is a change in the current version of the certification standard.
* The transition exam focuses on the updates and changes in the new version of the standard, ensuring that certified individuals are knowledgeable about the latest requirements and practices. -
Adherence to Code of Ethics:
Certified individuals must adhere to a code of ethics, demonstrating professionalism and integrity in their practice. Any violations of the code of ethics may result in the suspension or revocation of certification
-
Payment of Recertification Fees:
Payment of the required recertification fees is necessary to process and validate the renewal of certification.
Introduction
To maintain the integrity and fairness of our examinations, specific guidelines have been established for proctoring. These rules apply to all candidates and must be adhered to strictly. Failure to comply may result in disqualification or other disciplinary actions.
General Requirements
Technology Setup
- Device: Use a desktop or laptop with a working webcam and microphone. Mobile phones or tablets are not permitted unless explicitly allowed.
- Internet: Ensure a stable internet connection with sufficient bandwidth to stream video and audio continuously.
- Browser: Use the designated browser as specified by the exam platform.
- Power Backup: Ensure your device is fully charged and/or connected to a reliable power source.
Environmental Setup
- Location: Choose a quiet, well-lit room with minimal distractions.
- Background: Ensure the background is plain and free of any clutter or distractions.
- Privacy: No other person is allowed in the room during the examination.
Pre-Exam Procedures
Present a valid government-issued photo ID or institution-approved identification document. Ensure that no unauthorized materials (e.g., books, notes, or electronic devices) are present.
During the Exam
Behavior Guideline
- Focus on the Screen: Avoid looking away from the screen for extended periods.
- No Assistance: You are prohibited from receiving help from anyone or any external resource.
Prohibited Items
- Electronic devices such as mobile phones, tablets, smartwatches, and earphones.
- Books, notes, or any other study material unless explicitly permitted.
Proctor Interaction
- Follow all instructions given by the proctor.
- If contacted for clarification or rule enforcement, respond promptly and cooperatively.
- Inform the proctor immediately in case of technical issues.
Post-Exam Procedures
Submission
- Ensure your exam responses are submitted within the designated time.
- Do not close the exam window or disconnect until you receive confirmation that your submission is successful.
Feedback
- Report any technical issues or concerns to the designated support team immediately aƜer the exam.
Violations and Consequences
Examples of Violations
- Using unauthorized materials or devices.
- Attempting to impersonate another candidate.
- Engaging in suspicious behavior (e.g., frequent movement, talking).
- Disconnecting intentionally without justification.
Consequences
- Warnings for minor infractions.
- Disqualification of the exam attempt for major violations.
