Choose from Eight InfoSec Courses at SANS Las Vegas 2018. Save $200 thru 12/27.

SANS CyberTalent Assessments Detail Info


Penetration Testing

Content Areas Assessed
Penetration Testing Fundamentals The individual understands the phases, process, and methodology of a penetration test, and the practical application of penetration testing techniques.
Cornerstone Penetration Testing The individual demonstrates a solid grasp of common knowledge areas for penetration testers. The candidate will be familiar with common penetration testing tools, and can perform basic penetration testing tasks.
Advanced Penetration Testing Principles The individual can demonstrate a progressive and compound of penetration testing methodology. The candidate can combine multiple knowledge areas to complete more complex tasks involving the analysis or exploitation of a target.

For more information, please contact us at cybertalent@sans.org

Format

  • Web-based tool
  • 30 question assessment
  • 60 minutes allowed for completion

Pricing

  • CyberTalent Assessments are sold in increments of 25. The cost per 25 Assessments is $3,750.

Digital Forensics

Content Areas Assessed
Digital Forensic Foundations The individual will be familiar with fundamental digital forensic methodology and the practical application of examination techniques which include the collection, preservation and analysis of common digital file systems, applications and volatile artifacts.
Cornerstone Digital Forensics The individual will demonstrate an understanding of the essentials of a digital forensics practice. These individuals approach engagements with the technical ability to perform reliable and repeatable examinations of digital assets. The individual will be familiar with the process and practice of preserving, collecting and examining physical devices, volatile evidence and network infrastructure elements.
Advanced Digital Forensics Principles The individual will demonstrate a progressive and compound understanding of advanced digital forensics techniques and methodology. These individuals will be familiar with the protocols and actions required to lead complex digital engagements involving the detection and examination of malware, malicious network events and host based artifact analysis.

For more information, please contact us at cybertalent@sans.org

Format

  • Web-based tool
  • 30 question assessment
  • 60 minutes allowed for completion

Pricing

  • CyberTalent Assessments are sold in increments of 25. The cost per 25 Assessments is $3,750.

Cyber Defense

Content Areas Assessed
Information Security Foundations The individual will demonstrate understanding of the fundamental concepts of information security, including defense-in-depth, secure configuration, network design and hardware.
Cornerstone Information Security The individual will demonstrate understanding of the practice of information security including limitation of network services, ports, and protocols,demonstrate knowledge of firewall principles and basic Configuration, and the concept of least privilege
Advanced Information Security Principles The individual will demonstrate understanding of a progressive and compound understanding of advanced information security techniques and methodologies, including OS security, threat and vulnerability assessments, and encryption.

For more information, please contact us at cybertalent@sans.org

Format

  • Web-based tool
  • 30 question assessment
  • 60 minutes allowed for completion

Pricing

  • CyberTalent Assessments are sold in increments of 25. The cost per 25 Assessments is $3,750.

Application Security

Content Areas Assessed
Common Web Application Attacks Current, working knowledge of the OWASP Top 10 and mitigation techniques
Web Application Architecture Security
  • Knowledge of web application architecture
  • Familiarity with design considerations relevant to security
  • Understanding of common design flaws and mitigation
Web Technologies and Services
  • Knowledge of REST and RESTful services
  • Knowledge of AJAX services with JSON and XML
Secure Coding Principles and Software Development Lifecycle
  • An understanding of the SDLC and security issues.
  • Knowledge of security principles and techniques (i.e. input validation, whitelisting, data sanitization, etc...)
Secure Coding Practice
  • Identify and mitigate security issues in Java, C, C#, PHP, Python, and SQL.

For more information, please contact us at cybertalent@sans.org


Application Security Domains
Application Security Domains The examinee will understand the details of common web application attacks.
Web Application Architecture Security

The examinee will understand web application architecture.

Web Technologies and Services

The examinee will understand web technologies and services including REST, Javascript, and AJAX

Secure Coding Principles and Software Development Lifecycle

The examinee will understand secure coding principles and the software development lifecycle.

Secure Coding Practice

The candidate will understand the practice of secure coding including Input Validation, Session Management, Access Control, and Authentication.

NOTE: The assessment will contain code samples in many languages including C, PHP, Java, .Net, and SQL. Primary platform aside, SANS believes a person specializing in application security should be able to spot core security flaws in any common language they are likely to encounter.

Format

  • Web-based tool
  • 30 question assessment
  • 60 minutes allowed for completion

Pricing

  • CyberTalent Assessments are sold in increments of 25. The cost per 25 Assessments is $3,750.

CyberTalent Enhanced

Content Areas Assessed
Information Security Aptitude The aptitude of the candidate toward general information security principles will be observed
Networking Concept Domain The candidate will demonstrate a thorough understanding of networking design, hardware, and common protocols such as Ipv4, IPv6, TCP, UDP, and ICMP, and will be able to read network packets.
Defense in Depth Domain The candidate will demonstrate a thorough understanding of defense-in-depth such as anti-malware, access control, authentication, and application security.
Internet Security Technologies Domain The candidate will demonstrate a thorough understanding of communications security including cryptography, VPNs, PKI, and data encryption.
Communications Security Domain The candidate will demonstrate a thorough understanding of common Internet security technologies such as firewalls, and processes such as vulnerability management, intrusion detection and prevention, and risk management.
Operating Systems Security Domain The candidate will demonstrate a thorough understanding of common operating system security for Windows and Linux, auditing, permissions, and security configuration.

For more information, please contact us at cybertalent@sans.org

Format

  • Web-based tool
  • 25 Skill-based questions
  • 25 Aptitude-based questions
  • 120 minutes allowed for completion

Easy to Use Reporting

  • Online reports summarize individual results and your department's skill portfolio. Reports are easily accessible online.

Pricing

  • CyberTalent Assessments are sold in increments of 25. The cost per 25 Assessments is $5,000.

Information Security Aptitude Assessments

Information Security Aptitude Assessments
Identifying High-Potential Talent Talent: A natural ability or aptitude. A capacity for achievement and success. Everyone is looking for cyber talent, and the SANS CyberTalent Aptitude Assessment identifies individuals with high potential. It uses objective data to measure an individual's aptitude and capacity for achievement in cyber.
Elements of Potential Success in Cyber In broad terms, the types of elements the assessment aims to measure include technical comprehension, problem solving, and knowledge application. It measures them with a unique combination that assesses both common aptitude attributes and unique cybersecurity-specific attributes identified by SANS experts and aptitude researchers.
Correlation with GIAC Certification Success Performance on the CyberTalent Aptitude Assessment is an indicator of success in training and certification. Results have shown a high correlation with success in GIAC certifications.

For more information, please contact us at cybertalent@sans.org

Format

  • Web-based tool
  • 30 question assessment
  • 60 minutes allowed for completion

Easy to Use Reporting

  • Online reports summarize individual results and your department's skill portfolio. Reports are easily accessible online.

Pricing

  • CyberTalent Assessments are sold for $150 per assessment or a pack of 25 for $3,750.