Approved (current) professional standards.
Separately indicated (underlined) qualifications for which certification can be carried out:
#1. Professional standard: "Developer of information protection systems"
Professional qualifications:
The main purpose of professional activity:
Design, development, testing and evaluation of information protection systems throughout the life cycle of their development.
#2. Professional standard: "Administrator of networks and systems"
Professional qualifications:
The main purpose of professional activity:
Installation and maintenance of networks and systems, their specific components (installation, configuration and updating of hardware and software, maintenance of databases, creation and management of user accounts, supervision or execution of backup and recovery, implementation of operational and technical security controls; compliance with policies and organization security procedures, etc.). Administration of a data management system that allows you to securely store, process, request, protect and use data.
#3. Professional standard: "Specialist in the field of information protection"
Professional qualifications:
The main purpose of professional activity:
Ensuring security (confidentiality, integrity, availability) of information processed (transmitted) in information (automated), electronic communication and information and communication systems against unauthorized actions with information (including computer viruses), leakage through technical channels and special effects on means processing of information, as well as information voiced at the objects of information activity, leakage through technical channels.
#4. Professional standard: "Security analyst of information and telecommunication systems"
Professional qualifications:
The main purpose of professional activity:
Collection, processing, analysis and dissemination of cyber threat/warning assessment results. Research, analyze and participate in cyber incident response in cyberspace.
#5. Professional standard: "Security specialist (information and communication technologies)"
Professional qualifications:
The main purpose of professional activity:
Organization and provision of cyber security of information systems and information and communication technologies; management of the consequences of information security threats within the organization, including management of special programs (projects) of other areas of responsibility; formation of strategic development of the organization, personnel, infrastructure, security requirements, as well as development and implementation of the institution's information security policy and strategy; planning information security and cyber protection measures in case of emergencies or incidents; awareness of the security of information resources of the organization or enclave, institutions and enterprises of various forms of ownership.
#6. Professional standard: "Instructor-methodologist in information security and cyber security"
Professional qualifications:
The main purpose of professional activity:
Provision of educational, advisory and methodical services in the field of information security and cyber security.