GSAE - GIAC Security Audit Essentials
The GSAE is a security auditing certification that demonstrates that the owner has the abilities to audit policy, procedure and conformance.
It is maintained by the SANS Institute (SysAdmin, Audit, Network, Security).
The GSLC is a security auditing certification that covers information and security auditing in an organization. This includes concepts such as security policies and auditing of devices such as firewalls and VPNs.
The SANS Institute offers a course for preparing for this certification. The course is called IT Security Audit & Control Essentials and is listed as AUD-410.
The course can be taken through a SANS conference or course and through self-study.
Three separate levels are available through the GIAC certification tree (of which GSAE is part). By completing this certification, the individual is at the Silver level of certification.
The Gold level of certification requires the candidate to write a detailed technical report/white paper. If the paper is accepted, they will be certified as Gold level.
The Platinum level is the highest certification available and requires multiple Silver certifications. To obtain this certification, extensive testing, research and assignments are required.
To be considered certified, the following criteria must be satisfied:
This certification must be renewed every four years.
- The candidate must pay an examination fee. This fee can be added onto a conference course or paid by itself (called a challenge certificate);
- The candidate must pass two online exams, both multiple choice with time limits.