testimonial-banner-2

Certified CISO students have a lot to say about their experiences in the CCISO class as well as how earning the knowledge as well as the certification has impacted their careers.


How will the content you learned in the CCISO program relate to your current job role?

“Since my current job is more business development and IA portfolio management within the US DoD focused, the information does not have much relevance. However, it provides valuable information that I can use during business development activities with US DoD CIOs. Additionally, it provides me a broader perspective (i.e. beyond US Government) when dealing with high-level cyber-security programs. Finally, it gives be a better foundation as I look to transition into a CISO role.” “I consider it to be a logical information building block to my CISM and CRISC. The perspective at the CISO level is important to understand in my current position.”

Senior Associate

booz-allen-hamilton-small

Senior Associate

booz-allen-hamilton-small

“I am constantly being pushed away from a technical role into more of a director role, which is more political and “negotiative.” The content relates directly to this concept and reinforced the skills and concepts I need to put into practice.” “The CCISO program directly relates to my current job function. I am confident that i will be using almost everything i learned in class. Great training program.”

Program Security Manager

mantech-small

Information Security Manager

mdlive-small

“I currently lead a group of teams responsible for security infrastructure, incident response, risk management, and forensics. This content helped solidify my understanding of the issues relevant to an executive with accountability over those functions.” “I deal directly with information assurance/security on a daily basis. I have had no formal education in this field. It is all learned on the job. The content of this course has put me on an even playing field with my peers and has already earned me a lot of credit with them.”

Director, Information Security

twc-small

Supervisory Systems Integration Manager

army-small

“A lot of the high level overview of the information in each of the 5 domains is useful for the type of work that I perform. I am responsible for many aspects of Cyber Security for the organization I work for and the information is beneficial to staying on top of the requirements and learning new concepts.” “I truly believe that what is in the CCISO Body of Knowledge is very valuable to a CISO and this was ever more evident when I attended the summit and heard the speakers almost quote many of the things that were in the CCISO Body of Knowledge. I found that a a great positive because they do it in their daily lives. I feel that the information in the CCISO Body of Knowledge will truly prepare me for a role as a CISO.”

Lead Information Assurance Security Engineer

nextgen-small

Director of Cybersecurity Initiatives,
National Cyber Security Instructor

excelsior-small

“The information covered in the course provided me with deeper insight on a few ISOs that I needed refreshing on to do my job professionally.” “It helped fill in some process gaps and give me good process checklists to ensure steps aren’t missed. It also helps to understand how the rest of the standards operate and measure up.”

Information Technology Specialist

dod-small

Technicore Engineering

technicore-small

“100% alignment as the CISO of a large organization.” “The primary take away for me was the affirmation of the importance of having a robust risk based approach to cyber security.”

CISO

hpe-small

CISO

ciso4rent-small

“It will help in performing our risk assessments as well as moving our current security program towards an actual framework such as Nist-800.” “Very helpful. Making me more rounded.”

Information Security & Compliance Officer Central

cnm-small

CIO

cse-insurance

“It will improve my ability to translate technical security issues to non-technical leaders.” “The content from the course will be used to write my strategic plan to reorganize my current role and program at my employer.”

Cyber Security Consultant

martra-small

Information Security Officer

firstfederal-small

“It will help me position myself for more senior positions in my current and future organizations. It will also help me continue to advance myself in the community as a trusted advisor who as seen as more than just technical.” “In understanding the importance of aligning the Engineering and Security governance structures more closely.”

Cybersecurity Specialist

rmc-small

IT Specialist/INFOSEC

depofhomelandsec-small

“The multitude of frameworks and emphasis on risk management are key elements to be applied in my daily job.” “It will directly relate, as I hold the current role in my organization.”

Scott Welker, Sr. Cybersecurity Analyst

Brad Senff, Director of IT Operations

“Conceptually, the content learned during the CCISO program will help me to transform my organization into a more mature.”

Assistant Information System Security Manager (AISSM)

How will the content you learned in the CCISO program relate to your career goal?

“The contents learned in the CISO program directly apply to my career goals because:

  1. It provides a view that’s broader than the US DoD environment that I’m accustomed to.
  2. It provides a framework on which I can build my short term goals. For example, I’m now aware of the various security frameworks and laws/regulations that I need to be aware of and become familiar with as I work to accomplish my goals. I view the CISO program is the starting block for my goals. It provides the basic knowledge for a successful start towards becoming a CISO and eventually a CIO.”
“The CCISO program directly prepared me for the next step in my journey of becoming a CISO. This content reflects those concepts and perspectives that I need to incorporate into my skills and habits to achieve that goal.”

Senior Associate

booz-allen-hamilton-small

Information Security Manager

mdlive-small

“It should open doors to cyber opportunities with more responsibility and at a more senior level than I’m currently performing.” “My goal is to serve as a CISO in a small to medium sized organization. It directly correlates to my career goals!”

Anonymous CCISO student

Program Security Manager

mantech-small

“I needed to understand this perspective on information security to better support the DoD CIO.” “Helps set me up for success as a CIO in making me more productive and knowledgeable for advancing to the CIO position.”

Senior Associate

booz-allen-hamilton-small

Supervisory Systems Integration Manager

army-small

“It provides training and certification for my future goal of becoming a good CISO. definitely aligned.” “I feel that the information in the CCISO Body of Knowledge will truly prepare me for a role as a CISO.”

Lead Information Assurance Security Engineer

nextgen-small

Director of Cybersecurity Initiatives,
National Cyber Security Instructor

excelsior-small

“I’m very DoD experienced, this helped me gain knowledge of other standards used in the market.” “Provides credibility with a set gold standard.”

Technicore Engineering

technicore-small

CISO

hpe-small

“The program validates the positions that I’ve been championing for the last decade. It wasn’t so much as new content, but a great opportunity to spend time focused on the exploration and discussion of the topic writ large.” “It will give me more of an executive toolkit that I can use to improve my consideration for those senior roles and in those senior circles. It will certainly help me stand out to board of directors and senior officials as the certification and the program catches on globally.”

CISO

ciso4rent-small

Cybersecurity Specialist

rmc-small

“Understanding that the CISO goals and objectives should be aligned with those of the organization.” “Education and awareness regarding industry standards certainly applies to my career goals.”

IT Specialist/INFOSEC

depofhomelandsec-small

Scott Welker, Sr. Cybersecurity Analyst

“It prepares me for program development and management.” “The CCISO program content will assist me to apply enterprise security concepts to my organization’s security program and enhance the overall effectiveness of our security program.”

Brad Senff, Director of IT Operations

Assistant Information System Security Manager (AISSM)

Additional Testimonials

“I participated in the CCISO Course held between 15th and 19th August this year, and I can confirm that it has been an excellent technical level and with strong participation and exchange of experiences of the instructor and each and every one of those who participate. I have been able to corroborate that the organizers of this course, have had great success by inviting as instructor to a person with extensive experience in the field of information security and the implementation of Best International Practices of the same subject within nationally and internationally recognized organizations, private and public, which has allowed him to obtain knowledge and experience of best level. They have been careful with the invitation of participants to these courses, as they seek an interaction among the participants and the exchange of experiences and relationships. This course has exceeded my expectations and I have no doubt that any professional who wants to take it, will live a great experience and get a solid body of knowledge at the end.”

“My experience within the CCISO Summit was a great opportunity to meet substantially all domains, along with colleagues specializing in security and particular ways of solving the technological problems and interaction with users for convenient protection of computer goods and information. The precise discussions of how to address the problems of information security to contribute effectively to counter the impacts and improve prevention of attacks, which have proliferated alarmingly.”

Dr. José Luis Duarte Alcántara, Head of Enterprise Risk Management Unit, Rapiscan System Inc. LATAM Consulting Unit.CCISO Class, August 15th – 19th, 2016, Mx City

MSc. DANIEL CHACÓN MORENO, Computer Engineer with Master Degree CCISO Class, August 15th – 19th, 2016, Mx City

“It was a pleasure to host the first CCISO course in Canada. This course was very different to the technical course we traditionally run. This course brings together people and leaders in the industry that are invested in what they do. There were lots of high level discussions that benefitted everyone. The participants were hungry to get information on how they can evolve there organizations to better improve security.” “The course was certainly insightful. I felt however that it was not sufficiently strategic in its focus. Most of the content discussed was a repetition of the CISSP and CISM courses. I was hoping that CCISO would separate itself distinctly from these courses. I was therefore hoping that the course would focus on strategic issues of information security management, eg. How to use information security to enable business and provide a competitive advantage.”

Glenn Reid, VP | General Manager

Tefo Moreki

“The CCISO course is a must for all people who are passionate about information security. The
training provided by Torque IT is very professional and the hospitality excellent.”
“The CCISO course is a step towards the ultimate Information Security role as it proves to the industry that the student has what it takes to assume the role with confidence. Torque IT as a training facility is excellent and the course work is clear and concise.”

Morne Visser

Nico Putter

“The CCISO course is a great course towards becoming a great information security officer. The materials cover all areas of information security concerns. Torque IT and the instructor were very helpful and supportive in areas covered in the syllabus of CCISO. They even went the extra mile by sharing current security issues in the industry. I have enjoyed the course and it has made a great difference for my infosec career.” “Information Security is core element in any corporate GRC program and need to be addressed. The CISO program covers this market gap regarding Information security knowledge and Governance by training and qualifying CISOs for the market.”

Bestone Kasolok

Ahmed Nabil Mahmoud, Chief Information Security Officer

pgesco-small

“The best part of my CCISO class was sharing ideas and experiences with industry peers.” “I enjoyed the networking, and hearing about security related issues and goals in the various industries represented at our training class.”

Scott Welker, Sr. Cybersecurity Analyst

Brad Senff, Director of IT Operations

“The best parts of the CCISO course were hearing the real life experiences of the instructor applying the CCISO course concepts to real world information security issues facing business organizations, as well as the shared perspectives among the various course participants from various business sectors.” “I am one of the first Batch of CCIOS certified professionals. I have gone through the entire CCISO program which now directly relates to my current / previous job functions. CCISO Body of Knowledge will truly prepare me for a role as a leader in InfoSec filed. I am confident that I will be using almost everything I learned in the CCISO program. I am glad and CCISO is Great certification program for information security executives.”

Assistant Information System Security Manager (AISSM)

Sushanth Sadanand K.,
Executive Program Head, Global BFSI Regulatory Compliance & CISO Cyber Security Strategist, GTS

“I took live, in-person training. I enjoyed the institutional and program level focus of the CCISO vs some of the more technical areas from my other certs. The training provided me a contact or two that I continue to network with. Most of the other benefits revolve around providing additional terminology and talking point with which to converse with external parties and auditors. The focus on different risk and security frameworks caused us to dig deeper into the options and add and/or modify some of the controls in our existing framework. “ “I took live, in-person training and found it be an excellent course! I believe I will use the C|CISO Body of Knowledge throughout my career. As my training class was held at the Albuquerque World Headquarters, the facility was nice and peaceful. I am very good at reading and interpreting material, so the questions on the exam were at a pretty good level for leadership level individuals. I felt the C|CISO program was a bit more difficult than the CISSP and it is also much better suited to Information Security Leadership than the CISSP. After taking the training, I was able to come back and have a good starting point for several security initiatives as well as a review of procedures and program elements. It has helped me improve my security program by allowing me to focus on Risk Management to a greater degree.”

Justinian Fortenberry, CISO

Luis Brown, CISO

“The certification has helped me to have a better view of the CISO or Information Security Officer work areas that need focus. The information I learned in the class has helped me improve my security program by expanding in the information of budgeting/risk/and auditing areas that are major concerns in the CISO role. “ “I read the CCISO Body of Knowledge thoroughly to prepare for the exam. I felt that the CCISO Body of Knowledge was well written. I have it in my office for reference. didn’t find the exam to be very difficult as I’ve been functioning in an information security leadership position for over a decade so I am quite familiar with the content. The C|CISO certification provided me with the validation that I’ve been performing the CISO role for quite some time based on my area of responsibilities. I use the information that I’ve learned constantly as a part of oversight and management of our information security program. “

Julian Sandoval, Associate Vice President & Business Applications Manager

Jason McRae, Director of Information Security & Compliance

“I read the C|CISO Body of Knowledge thoroughly to study for the exam. In addition to the reading, I dedicated a lot of time to better understand the logic behind the topics related to the C|CISO BOK. The C|CISO BOK includes great material that provides a general overview of past, current, and future issues in information security as well as main objectives to keep in mind while considering an information security approach. It is definitely a resource that I will use throughout my career.

Nowadays when the developing of newest information technologies are more intrusive and we become more technological dependent, complex exams measuring skills and knowledge are needed to ensure not only compliance but also to minimize information security breaches and the C|CISO exam was difficult. I do believe this degree of complexity is needed when it comes to information security. EC-Council is worldwide recognized for creating a set of security certifications oriented to bring best practices to the information security industry.

As a pioneer, EC-Council definitely recognized the great need for well-prepared information security experts to face the ongoing problems related to this fascinating certification in the 21st century. The C|CISO training program helped me perform my job better in that I learned new concepts that lead in the application of better security practices. The content of the program has helped me improve my security program in many ways. As Information System Security Officer for the US Department of Commerce, NOAA Fisheries South East Region, I have been able to successfully apply and combine the topics covered in the C|CISO program into daily practices, and as a President & CEO of Advance Division of Informatics and Technology, Inc., I benefit from the program in conveying best practices with practical results to our clients.”

“Real life experience combined with the classroom teaching did the trick for me (to pass the exam). As such you can’t memorize the entire CBK and will have to rely on your knowledge base. Bear in mind that you only have 4 hours for the test and in order to successfully complete the 250 questions, you will have to know the answer to the majority of the questions without thinking. I expected the exam to be hard because parts of it is CISSP level, some parts are CISM/CISSP-ISSMP level combined with the security program management part which is core C|CISO BOK and with only four hours and 250 questions, there wouldn’t be time for second thoughts on the answers. Therefore, when preparing, it was difficult because you could answer all questions when training, however, would you be able to do so during the test, under time pressure, and where you had to rely on your judgement and avoid second thoughts on the answers. However, the difficulty level of the questions was perfect, it was the time pressure and that you are forced to rely on your first answer that made it difficult. I believe that it was a perfect test as this is often how the CISO have to deal with questions during work hours. When the company experiences a security incident, a disaster, or a cyber attack, the CISO has to make decisions, take leadership and decide quickly, similar to the test.

I hold the following certifications: CISSP, GICSP, ISO27000 LI, CISM, CCSK. The C|CISO is the only certification which targets the CISO role. The CISSP is quite technical, but not that deep into the different areas. Other certifications, such as CISM, ISO27000LE, GICSP, and CCSK dig deeper into various parts of security management or the management task itself. Many of the other certifications often explain the pros/cons about having a central controlled security program versus a de-central program – without really explaining what this means. The C|CISO certification, however, is the only education, at least that is how I see it, that targets program management, security program management, business cases, stakeholder management, organization, and so forth. Therefore, the certification is brilliant when it comes to consultants that deliver CISO-as-a-Services or who deal with global operating companies as they often have quite a complex security program with many local or regional regulations to comply with. The C|CISO program, with its focus on the many different standards, has helped me in understanding large complex companies better. Because of this, the door to CISO roles in large multinational companies is now within reach.

The C|CISO program has helped me in creating better security programs as now I often find myself creating more than one security program. Today, we not only have the security program for the administrative part of the company, also the factory security now has its own security program. Regions, such as EU or the USA also quite soon will have its own program as it otherwise becomes too difficult, meaning expensive, to cover in one program.”

Luis O Noguerol, Information System Security Officer

Lars Hviid, NNIIT, Senior IT Security Architect

“I took live, in-person training and read the C|CISO Body of Knowledge to prepare for the C|CISO exam. The content of the training program was excellent and updated with current trends. The training has changed my approach to security in terms of Risk Management, ROI, and mapping to overall organization goals. It helps me to understand that security programs are not only for IT security but also be an enabler to business progress to increase the bottom line. Having the C|CISO certification is helping to move my CV to next level.” “I took live, in-person training and read the C|CISO Body of Knowledge thoroughly to prepare for the exam. I found the exam somewhat difficult. Having the C|CISO has helped bring respect and recognition and allowed me to the make the case for a title change from Director to CISO. The content of the program broadened my knowledge into areas I had not had experience in before.”

Mukesh Panchal, Regional Manager – West

John Bandy, Deputy Chief Innovation Officer

“I took live, in-person training and read the C|CISO Body of Knowledge thoroughly to prepare for the exam. The BOK is a resource I will use throughout my career. I had a wonderful instructor and enjoyed the training. As with all these type exams, there is a lot of material to study and you can never know what, if anything, to concentrate on. I thought the exam was fair and didn’t perceive any of the questions to be tricky. I am a CISSP. The C|CISO program was the next logical step for me as it concentrated a bit more on governance. As an executive manager, this is what I wanted to learn more about. CISSP was broader (material & test) than the C|CISO. The knowledge gained in the C|CISO program has helped me set strategic direction for my department. C|CISO helped me think more about oversight and governance, the next big step after putting controls in place. “ “The C|CISO BOK is a holistic approach to security and it helps me throughout my career, especially in Risk Assessment work. I took live, in-person training and read the C|CISO Body of Knowledge thoroughly to prepare for the exam. It was a rigorous training program. C|CISO is a conceptual exam and is therefore difficult because it does not rely on the memorization of facts but on the understanding of concepts. The C|CISO material has improved my job performance and is a must have certification. From the C|CISO program, I learned an abundance of knowledge in Risk Management and BCP/DRP which helps me to align my security program with the goals of the business. “

Bill Steiner, City of Huntsville, AL, IT Director

Sheikh Ahmed Adil, A2i-ll Project UNDP, Consultant-ICT

“I took live, in-person training and I read the C|CISO Body of Knowledge to prepare for the exam. The most helpful sections of the training and BOK for me were the discussions on the various frameworks and the differences between them. After the class, I was tasked with creating a Third Party Oversight / Risk Management program for a client, and the framework references helped me customize the program to the industry and compliance requirements.” “I took live, in-person training in Atlanta during the Global CISO conference. I had a great instructor who focused on real world examples and having the class talk about experiences. I read the CCISO Body of Knowledge thoroughly to prepare for the exam and it was comprehensive in relation to the course and overall study. I found the exam difficult. I’m coming from the business side as a CTO and CEO so the specific security low level details were more new to me. The business side was not, so overall it was good. The CCISO program has helped me perform my job better by teaching more focus on overall program implementation than just specific items. We implemented an overall NIST based Information Security Program because of what I learned in class. The program gave me correct direction and scope.”

Donna Gallaher, RGP, CIO and CISO Advisory Consultant

Bill Sorenson, CTO, CISO, and Founder

“I found the exam somewhat difficult. The topics were on point, and included a good mix of business acumen, sprinkled with risk concepts. Studying currently for the CRISC, CISA/CISM certs, and I’d say that C|CISO more closely aligns with CRISC, but has a slightly different approach. There’s quite a bit of detail regarding CISO topics that go a bit beyond CRISC concepts, which of course focus more on risk topics. The CCISO program has helped me in my job as any certification that helps bridge IT tech-speak to board-room requirements, can’t hurt.” “I took online training (iLearn) and I read the CCISO Body of Knowledge thoroughly to prepare for the exam. The BOK is very good material. I still use it as a great place for reference. I found the exam somewhat difficult. There is just a lot of material in many different areas. As one might expect, the areas where I had plenty of experience were not difficult, while the newer areas were more difficult. I think it was an appropriate level of difficulty. For the level of position that this certifies, I think that CCISO is great. I think each program has their area of focus and fit a certain need. From a CISO knowledge perspective, I think the CCISO is perfect. I also have the CISM certification and I think the CCISO is appropriately higher in terms of oversight and management level. I haven’t changed jobs, but I feel that I’m more comfortable with the higher level aspects of my role due to information that I got in the CCISO training process. I find the material has been helpful at maturing our InfoSec program. Improvements to governance, oversight, and strategy creation have been the main areas of improvement. I have also used some of the material to help me present InfoSec concepts to our Board of Directors.”

James Bowman, Security Architect

Chad Hoggard, Manager, Information Security Architecture

“I read the CCISO Body of Knowledge thoroughly to prepare for the exam. I found the exam somewhat difficult as there were numerous topic areas that are worthy of questions. Earning the CCISO certification assures my management that I have the required skills and knowledge. The CCISO program material helps me because I am constantly applying knowledge to security posture of organization.” “I took live, in-person training and I read the CCISO Body of Knowledge thoroughly to prepare for the exam. I found the BOK current, relevant and practical. My experience going through the training program was absolutely wonderful, great people and amazing staff. I found the exam somewhat difficult. Knowing the materials in detail and making sure you understand the policies is not an easy thing to do. CCISO is upper level management type of questions, the rest of my certifications are technical and networking concentrations. Being familiar with governance and policies really helps me with my job responsibilities. Being aware of new threats, vulnerabilities and being updated with CCISO emails, newsletters, and podcasts events has helped my information security program.”

Andrew Morrow, Rolka Loube, Vice President, IT

Charline Nixon, Calhoun Community College, Cyber Security Faculty

“I read the CCISO Body of Knowledge thoroughly to prepare for the exam and I think it is most important to thoroughly read and understand CCISO Body of Knowledge not only for passing the exam but BOK also give you clear and concise ideas for information security management day-to-day activities.” “I took live, in-person training and I read the CCISO Body of Knowledge thoroughly to prepare for the exam. The CCISO BoK is an outstanding resource that I refer to regularly. The CCISO training program is an exceptional platform for a deep dive into the CISO world as well as a powerful opportunity to network and collaborate with experienced peers. I found the exam somewhat difficult. The questions require you to draw from training and real-world experiences, testing your whole CISO skills. The CCISO program brings technical and management experience and skills together. I was promoted. I have developed better skills to elevate policies, management, and the technical aspects of information security to C-suite and the entire organization, and more effectively drive security to the forefront of everyday operations and behaviors.”

Kaushlendr Partap, Koenig Solutions Ltd, Assistant Technical Manager InfoSec Manager

Ehsan Choudhury, Zaxby’s Franchising LLC, Sr. Director of IT Operations & Security

“I took online training (iLearn) and I read the CCISO Body of Knowledge thoroughly to prepare for the exam. The CCISO BOK is a valuable resource that can be used as reference material. My experience going through the training program was excellent. CCISO is a recognized certification amongst CISOs and it has help me by showing that I have the skills other CISOs have also achieved. The CCISO program has helped me improve my security program. It is now more structured and based on domains.” “Having the CCISO shows I have executive level and strategic thinking abilities and awareness. It has contributed to me being considered for more senior roles. It helps me continue to advise executives on how to improve their security program at a level they can understand. It will also help me when I end up running my own program.”

1. Alex Leon, Mitsubishi UFJ Trust and Banking Corporation, Senior Information Security Auditor

Isiah Jones, Federal Energy Regulatory Commission (FERC), Office of Energy Infrastructure Security (OEIS), IT Specialist

“I read the CCISO Body of Knowledge thoroughly to prepare for the exam. It was a comprehensive body of knowledge pack with relevant theories and concepts a CISO should know. I am a CISSP credential holder through ISC2. The CISSP credential facilitates the foundation of IT security principles whereas the CCISO is focused towards the information security leader. It has strengthened my knowledge of best practice IT security principles and prepared me for success at the CISO level. It has solidified the security principles which are the underpinnings of a successful IT security program.” “I took live, in-person training and I read the C|CISO Body of Knowledge thoroughly to prepare for the exam. My overall experience going through C|CISO training was very good. Scenario based training is recommended. It was a difficult exam because it scenario-based and took a lot of thinking. C|CISO is definitely among the top of the security certifications that I have, including CISSP.”

Eric Nielsen, The Network Pro, vCIO

Suresh Nair, IT Security Leader at GE

“I took live, in-person training. Compared to the other certifications I have it the CCISO program is more theoretical. I had more technical background and I really missed the management’s point of view on the security. From this perspective CCISO, was the right choice for me to catch up on management concepts with. I now know how to manage risk and how to deal with information security better. “ “The class was small, focused, and led by a phenomenal instructor, Joe Voje. (The instructor, the key to the whole experience in my opinion, was fantastic.) The materials were great. Student handbook and the slides were well done, cohesive, and easy to follow. The material itself is excellent in that it provides an excellent balance between the frameworks, the requisite knowledge of those frameworks, and the need to align with the business. While the CISSP is an extraordinary volume of material, essentially a carpet bombing of all things security, this course is focused in the much needed “how to run the program.”

Biser Todorov, Teleena, Information Security Officer

Matt Halsey, CISSP, PMP, CSM, Proj Prog Mgmt Sr. Advisor, Support & Delivery Services, Dell EMC | Dell Data Security