GIAC Certification, GICSP, Now Approved Under DoDD 8570 Guidelines

Bethesda, Md. – GIAC Global Industrial Cyber Security Professional (GICSP) certification now meets the requirements of the DoD Manual 8570.01 "Information Assurance Workforce Improvement Program" and is approved for the Department of Defense (DoD) Computer Network Defense Analyst (CND-A), Computer Network Defense Infrastructure Support (CND-IS) and Information Assurance Technical Level II (IAT Level II) workforce categories.

The GIAC Global Industrial Cyber Security Professional (GICSP) certification bridges together IT, engineering and cyber security to achieve security for industrial control systems from design through retirement. This unique vendor-neutral, practitioner focused industrial control system certification is a collaborative effort between GIAC and representatives from a global industry consortium involving organizations that design, deploy, operate and/or maintain industrial automation and control system infrastructure. GICSP will assess a base level of knowledge and understanding across a diverse set of professionals who engineer or support control systems and share responsibility for the security of these environments. Get certified in Industrial Cyber Security:

"Earning the Global Industrial Cyber Security professional (GICSP) demonstrates the holder possess the foundational knowledge and skills to help secure the infrastructure systems relied upon to run our military bases and facilities around the world," stated Mike Assante, Director of Industrial Control Systems at SANS Institute.

Successful GICSP candidates will demonstrate an understanding of how to secure and defend industrial control systems, networks, and devices in order to keep them resilient against cyber threats. Certified individuals will be able to leverage tools, models, and methodologies to identify areas of risk and harden impacted systems.

The approval of GICSP for DoDD 8570 effects any full or part-time military service member, contractor, or local nationals with privileged access to a DoD information system performing information assurance (security) functions -- regardless of job or occupational series, requiring an approved certification for their particular job classification.

This certification can be leveraged across industries to ensure a foundational set of knowledge and capabilities that IT, Engineer, and Security professionals should know if they are in a role that impacts the cyber security of an ICS environment.

Although no Specific training is required for any GIAC certification, the SANS ICS410: ICS/SCADA Security Essentials course is available to learn necessary skills and prepare professionals for the GICSP certification exam.

For help with registering for the GICSP certification exam, please email:

About GIAC
GIAC Certifications is a cyber security certification body featuring over 30 hands-on, technical certifications in information security. GIAC has certified over 91,000 IT security professionals since it was founded in 1999. Eleven GIAC certifications are accredited under the IEC/ISO/ANSI 17024 quality standard for certifying bodies. GIAC is an affiliate of the SANS Institute. (

About SANS Institute

The SANS Institute was established in 1989 as a cooperative research and education organization. Today, SANS is the most trusted and, by far, the largest provider of cyber security training and certification to professionals in government and commercial institutions world-wide. Renowned SANS instructors teach more than 60 courses at in-person and virtual cyber security training events and on demand. GIAC, an affiliate of the SANS Institute, validates practitioner skills through more than 35 hands-on, technical certifications in cyber security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers a master’s degree, graduate certificates, and an undergraduate certificate in cyber security. SANS Security Awareness, a division of SANS, provides organizations with a complete and comprehensive security awareness solution, enabling them to easily and effectively manage their ‘human’ cybersecurity risk. SANS also delivers a wide variety of free resources to the InfoSec community including consensus projects, research reports, webcasts, podcasts, and newsletters; it also operates the Internet's early warning system–the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to support and educate the global information security community. (