Its not too late. If you hurry, you could still make it to the first annual International Symposium on Information Security, held this week at Londons Thistle Charing Cross Hotel. But wait. It says here in a press release that you gotta be certified. Well, not in so many words. But, This symposium is the worlds first international security forum to be developed exclusively by CISSPs for CISSPs and their associates from respected organizations. So says James E. Duffy, CISSP, managing director for (ISC)2. The event is sponsored by the MIS Training Institute and The International Information Systems Security Certification Consortium ((ISC)2), a nonprofit organization that trains and certifies IS security professionals (CISSP) and practitioners (SSCP) worldwide.There are nearly 11,000 CISSPs working in 80 countries, with many, according to the (ISC)2 literature, in top positions in both the public and private sectors. That would be lofty company indeed at the conference. As it turns out, you dont actually have to be certified to attend, but you get a comfortable discount if you are. On first read, however, the wording implicitly suggests a certified exclusivity. And lately, many security job descriptions have that same ring. Some employers say they wouldnt hire a security worker who didnt have certification. (See Youre Certifiable in the October issue of CSO.)But for some in the business, the increasing emphasis on certification raises questions. Is certification more important than experience? Are all certifications created equal? The proliferation of certifications (now more than 20) that you can obtain as a security worker yields a comical volume of acronyms. Besides CISSP and SSPC, you could get CISA, ISACA or TICSA certification. Or CCSE or CCNA or EWSCP. You know, just for starters. Many of these are simply the result of vendors flinging themselves onto the bandwagon and offering certification to boost their own credibility and prominence. And some, of course, are well-intended efforts to demonstrate the extent of knowledge of job applicants. They may even have real value.Whats your opinion? Are certifications a valid mark of a persons skill and knowledge level, or are they just resumé fluff? Tell us what you think. Related content opinion Cybersecurity professional job-satisfaction realities for National Cybersecurity Awareness Month Half of all cybersecurity pros are considering a job change, and 30% might leave the profession entirely. CISOs and other C-level execs should reflect on this for National Cybersecurity Awareness Month. By Jon Oltsik Oct 03, 2023 4 mins CSO and CISO CSO and CISO C-Suite feature The value of threat intelligence — and challenges CISOs face in using it effectively Knowing the who, what, when, and how of bad actors and their methods is a boon to security, but experts say many teams are not always using such intel to their best advantage. By Mary K. Pratt Oct 03, 2023 10 mins CSO and CISO CSO and CISO CSO and CISO news CIISec secures government funding to expand CyberEPQ program The funding will support places for 400 students with a focus on attracting a diverse pool of UK cybersecurity talent. By Michael Hill Oct 03, 2023 3 mins IT Training Careers Security news Multibillion-dollar cybersecurity training market fails to fix the supply-demand imbalance Despite money pouring into programs around the world, training organizations have not managed to ensure employment for professionals, while entry-level professionals are finding it hard to land a job By Samira Sarraf Oct 02, 2023 6 mins CSO and CISO Technology Industry IT Training Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe