|
Certification Definitions |
|
- Certified Computer Forensics Examiner (CFCE)
International Association of Computer Investigative Specialists
This is a ten month, rigorous testing process that incorporates knowledge taught at one of the annual two week IACIS conferences (one in the USA and one in Europe) with a series of practical computer forensic exercises. Each practical exercise must be successfully completed and passed before moving onto the next exercise. Upon the successful completion of the practical examinations a written test is then administered. The final examination is narrative and has 100 questions covering a variety of fundamental computer forensic/digital evidence issues. Research and Cites made by the student must be in the “APA style.” The student must pass the written examination with a score of 80% or better. Re-certification is required after three years with a minimum of 60 hours of classroom time in computer or relevant investigative classes to maintain the CFCE certification.
- Certified Electronic Evidence Collection Specialist (CEECS)
International Association of Computer Investigative Specialists
The CEECS is a training course and certification that instructs personnel on how to collect electronic evidence in a forensically sound manner and instructs best practices in seizing computers and digital media. This training includes both a practical and a written exam.
- Encase Certified Examiner (EnCE)
Guidance Software
The EnCE certification consists of a test with a minimum passing score of 80% and a practical examination utilizing the EnCase computer forensic software that must be completed within 60 days with a passing score of 85%. The EnCE certifies the use of Guidance Software’s EnCase computer forensic software and acknowledges the user has “mastered” computer investigation methodology as well as the use of the EnCase computer forensic software during complex computer examinations. Recertification is required after two years with a minimum of sixty-four credit hours of documented continuing education in Computer Forensics or Incident Response to maintain the EnCE certification.
- AccessData Certified Examiner (ACE)
AccessData
The ACE certification consists of a Knowledge Based Assessment test of 60 questions that must be completed within 90 minutes with a minimum passing score of 80%. Utilizing the AccessData computer forensic software a Practical Based Assessment which is timed in multiple task based technology sessions is then administered with a minimum passing score of 80%. Re-certification is required after two years with a minimum of 80 hours (40 hours per year) of documented continuing education including one AccessData update (course or technical conference, web presentation, etc.) per year to maintain the ACE certification.
- BlackBag Macintosh Certification
BlackBag Technologies, Inc.
Three course levels are offered (Introductory, Intermediate and Advanced). Each course covers the Macintosh (Apple) operating system and the BlackBag Technologies computer software tool suite. Each course level is 4.5 days. Upon completion of the course a practical and written examination are then administered.
- SubRosaSoft Examiner Certification
SubRosaSoft,com, Inc.
This certification consists of four days of training utilizing the Macintosh (Apple) operating system and the MacForensicLab computer forensic software. Upon completion of the course a practical and written exam are then administered.
- Ringtail Certified Technician – Ringtail Certified Service Bureau Partner
FTI Ringtail
The Ringtail certification consists of participating in an online training session, a practical examination utilizing the Ringtail software and demonstrating knowledge and competency. Upon completion an examination is administered. Re-certification is required after two years or with each new release of the software.
- Discover-e Certification
Discover-e Legal
The Discover-e software certification consists of three days of training and the passing of a written test. The training and testing covers the understanding of electronic data discovery theory, competence in the use of the suite of the Discover-e software utilities and tools and the use of third party software for the migration of non-standard email storage files into formats compatible with discover-e.
- Certified Information Forensics Investigator (CIFI)
International Information Systems Forensic Association (IISFA)
This a designation earned exclusively by the most qualified information forensic professionals in the field. Along with adherence to the highest standards of ethical conduct, the CIFI epitomizes the highest standards in knowledge requirements and expertise. The CIFI encompasses multiple domains of knowledge, practical experience, and a demonstration of expertise and understanding accomplished through a rigorous exam proctored under the most controlled of environments. Unlike many vendor certifications, the CIFI maintains vendor neutrality and is independent of dependency requirements such as sponsored training, purchasing of product, or requirements other than ability. In fact, candidates may choose to sit for the exam without any restrictions other than adherence to the IISFA code of ethics and the exam fee. The CIFI is recognized as the only certification that truly represents the abilities of field information forensics investigators and is the benchmark by which they are measured. Earning the CIFI designation is a significant accomplishment and identifies the best in the profession of information forensics investigator. The Certified Information Forensics Investigator? (CIFI) Certification is specifically developed for experienced information forensics investigators who have practical experience in performing investigation for law enforcement or as part of a corporate investigations team. The CIFI certification is designed to demonstrate expertise in all aspects of the information investigative process and is dedicated to bringing a level of consistency to the profession than can be recognized outside the field.
|
