The concept of intelligence has been linked to numerous areas over the years, thus naming new areas of knowledge on very varied topics: psychology (emotional intelligence), mathematics (data intelligence) or commerce (business intelligence), among many others. . This phenomenon would, in any case, be determined by the essence of the word intelligence itself, and specifically by its meaning. Intelligence involves the ability to understand, solve problems, know and understand.
The human being's desire for knowledge has, therefore, expanded to all existing and future fields of knowledge. This movement in favor of knowledge should be noted that it is not a novelty and that specifically the states of the modern era can be recognized as the first to establish a series of guidelines and standards regarding its learning, application and use. Therefore, intelligence services are one of the best examples to follow for obtaining information and generating intelligence for organizations.
Analytical methodologies and structures have also been developed by civil society in private companies. The services offered by companies, particularly cyber intelligence, are based on a very specific sphere of knowledge, which contains a much larger sphere, intelligence.
Accreditation for professionals in the cyber intelligence sector implies, on the one hand, the acquisition of the knowledge necessary to carry out their daily work and, on the other hand, the recognition by a private institution that they certainly possess said knowledge. In the sector, the knowledge necessary to perform the services will depend on the particular area being worked on, however, we currently consider some of the most relevant certifications:
Certifications related to obtaining methodologies, OSINT (Open Source Intelligence)
- Level: Beginner
- Price: $450
- Renewal: Not required
Obtaining certification is done by completing 100% of the exercises presented in the modules. These practical modules are separated by topics related to assets, social networks, leaks and deliverables, among others. There is no time limit for its completion.
- Intermediate level
- Price: $450
- Renewal: Every 2 years, $125
McAfee certifications are accessible, accrediting higher education or work experience in various areas related to obtaining information without the need to undergo training. Although in all certifications there are packages that include training, a study manual, preparation exercises and access to the exam. There are numerous certifications related to cyber intelligence, and in some of them the syllabus may be similar. Certification is obtained by obtaining a 70% or higher on the exam.
- Advanced level
- Price: $300
- Renewal: Not required
The certification requires either the completion of training, the accreditation of professional experience in said field. The practicality of this certification can be a challenge for those who do not work with open source acquisition on a daily basis or do not have prior experience. The certification exam is based on carrying out an investigation with its deliverable, lasting a maximum of 10 days on a case proposed by a supposed client. The evaluation will be carried out on the deliverable, expecting a professional level in terms of format and content that could be requested by a real client.
- Advanced level
- Price: $979
- Renewal: Every 2 years, $479
GIAC certifications have associated SANS training, in this case SEC487. The SANS course is based on the knowledge required in the certification exam, so it may be advisable to take it. The certification exam consists of 75 questions and requires at least 69% approval.
Certifications related to actors and cyber threats, CTI (Cyber Threat Intelligence)
- Level: Beginner
- Price: £399
- Renewal: Every 3 years
The CREST certification exam is extensive with a total of 120 multiple-choice questions with a minimum of 70% correct answers for passing (84 correct questions). It evaluates knowledge about the collection and analysis of information for the generation of threat intelligence, as well as basic skills and knowledge and more specific areas related to existing roles. The price of the certification varies depending on the country, since the training necessary to access it is offered by two different organizations.
- Intermediate level
- Price: $450
- Renewal: Not required
It is possible to access the certification by completing any of the training associated with it or by proving professional experience in the field of cybersecurity, in which case you will have to pay the price of the eligibility application. The certification exam consists of 50 questions and requires a minimum of 70% to pass.
- Advanced level
- Price: $979
- Renewal: $479
GIAC certifications have associated SANS training, in this case FOR578. The SANS course is based on the knowledge required in the certification exam, so it may be advisable to take it. The certification exam contains 75 to 82 questions and requires a minimum of 71% to pass.
- Advanced level
- Price: $450
- Renewal: Not required
Obtaining certification is done by completing 100% of the exercises presented in the modules. These practical modules are separated by topics related to basic fundamentals, malware analysis and countermeasures, among others. There is no time limit for its completion.
- Advanced level
- Price: $499 per year
- Renewal: Not required
This certification, like the others offered by MITER ATT&CK® since January 1, 2024, are offered exclusively on the MAD20™ platform. To obtain it, an annual subscription and approval of a series of badges specific to the certification itinerary for which one is opting is required. Once all the necessary badges have been obtained, it is possible to access the final exam and, with its approval, obtain certification. The subscription includes online training and event attendance.
