To earn educator certification in Texas or another state, candidates must complete certain steps at their institution and apply with the appropriate state agency.

To become certified in one of the Baylor educator preparation programs, a Baylor student must first be officially accepted into the program.

• In the School of Education program for undergraduates, this process typically occurs during the sophomore year, before the student may begin the Teaching Associate experience.
• For graduate students, different timelines apply to those seeking certifications, so please check with the Office of Professional Practice or the applicable graduate program director for guidance.
• Different timelines also apply to students in academic programs that are housed outside of the School of Education, so students should check with the appropriate program director.

The Office of Professional Practice in the School of Education handles the TEA educator certification process for all Baylor students.

Important Documents and Process Descriptions:

The SANS Institute was founded in 1989 to provide IT security and administration information and vendor-neutral training on those subjects. Since its inception, SANS has trained more than 165,000 individuals via in-class courses, training events, and technical conferences held throughout the world; self-paced online training (called SANS OnDemand); and interactive virtual training (called SANS vLive).

Course Topics from the SANS Institute include security essentials, hacking techniques, intrusion detection and incident response, network defense, mobile device security, auditing, digital forensics and related security topics. The “information” component of SANS includes the SANS studying Room, an extensive library of downloadable security research documents; the Internet Storm Center, which monitors and reports on malicious attacks and provides weekly bulletins and alerts; free security policy templates; the CIS Critical Security Controls for cyber defense and more.

SANS formed the Global Information Assurance Certification (GIAC) program to act as the certification arm for its training courses, ensuring that individuals meet knowledge and skills standards in specific areas of IT security. More than 165,000 GIAC credentials have been issued. GIAC certifications are well known and highly respected among employers and the information security industry. Even the United States National Security Agency (NSA) recognizes GIAC certifications.

GIAC offers more than 30 security certifications across introductory, intermediate, advanced and expert levels. According to SANS, GIAC certifications are unique because “they measure specific skills and knowledge areas rather than general infosec knowledge.” That means a typical GIAC certification requires rigorous preparation and hands-on experience. That’s why SANS training comes highly recommended.

Note: Another component of SANS is the SANS Technology Institute, which offers one security-related master’s degree – the Information Security Engineering (MSISE). The SANS Technology Institute also offers five graduate certificate programs focused on Cybersecurity Engineering (CORE), Cyber Defense Operations, Incident Response, Industrial Control Systems Security, and Penetration Testing and Ethical Hacking.

SANS GIAC certification tracks

GIAC certifications fall within six specific domains, each with its own certification track:

• Cyber Defense: Boasting 12 credentials (10 of which are advanced certs), the Cyber Defense certification family is the largest of the SANS GIAC certification domains. Cyber defense certifications are geared to professionals who identify and defend against cybersecurity threats.
• Industrial Control Systems (ICS): SANS GIAC offers three ISC certifications, one at the intermediate and two at the advanced levels. ISC certifications are geared toward control system engineers and other security professionals charged with cyber security for control system infrastructures and technology along with automation security.
• Penetration Testing: SANS GIAC-certified pen-test professionals possess the skills necessary to perform tasks that include evaluating attack techniques and methods, recommending security best practices to prevent security incidents, and formulating plans to defend against security incidents when they occur. With seven credentials, Penetration Testing is the second largest certification domain. Credentials are offered for a variety of scenarios, including web applications, mobile devices, Python coding, wireless networks, ethical hacking and more.
• Digital Forensics and Incident Response: This domain targets InfoSec professionals, including IT administrators, security engineers and security analysts. Also included are law enforcement and legal professionals who respond to security incidents and related cyber breaches, conduct forensic investigations, and examine and gather incident artifacts and related evidence.
• Developer: Developer certifications are aimed at developers and anyone else interested in building secure programs and applications. Three certs are offered – Java programming, web applications and .NET programming.
• Management and Leadership:  The management and leadership domain is focused on professionals who may have (or lack) technical skills but provide managerial or project management support. They are also instrumental in developing and implementing security policies on an organizationwide basis. These credentials include certs for auditors, project managers, CISOs, data security law and InfoSec professionals.

Another certification “category” is the pinnacle GIAC certification – namely, the GIAC Security Expert (GSE). Some industry officials consider the GSE to be the premier security-related certification available today. Whereas most GIAC certifications can be achieved by passing a single multiple-choice exam, the GSE exam includes both a multiple-choice component and a hands-on lab.

SANS GIAC certification levels

SANS offers four levels of certifications, including introductory, intermediate, advanced and expert. The table below is a modified version of the GIAC certification roadmap,  which lists each certification by level and certification tracks.

Introductory Level

Cyber Defense

Intermediate Level

Cyber Defense

ICS

Penetration Testing

Digital Forensics and Incident Handling

Management and Leadership

Advanced Level

Cyber Defense

ICS

Penetration Testing

Digital Forensics and Incident Response

Developer

Management and Leadership

Other than the GSE, GIAC certifications require passing one exam and have no prerequisites. That said, GIAC highly recommends SANS training courses, especially for candidates who don’t have adequate hands-on experience and aren’t able to self-study.

Once an application has been approved, candidates have four months to attempt the associated exam. (GIAC does not administer exams immediately upon conclusion of a training event; candidates must wait at least seven days to sit for the exam.) The cost of each GIAC exam is currently $1,899, which includes two practice exams. The lab exam for the GSE is $2,459, and the written exam is $499. (Note: Students can purchase and take an exam as part of a training course, or they may purchase and take an exam by itself.)

SANS GIAC certification renewal

To remain certified, credential holders must renew their GIAC certifications every four years by earning 36 continuing professional education (CPE) credits. CPE credits may be earned by completing approved training or certifications, participating in continuing education, publishing a technical paper, completing certain graduate-level courses, getting community or work experience or participating in cyber range activities. A renewal fee of $429 is also required.

GIAC certifications cover the gamut of job roles in IT security today. GIAC-certified professionals work as security analysts or certified (two of the most common roles), information security engineers, network security admins, database administrators, developers, forensic specialists, risk managers and auditors.

Large organizations with security operations centers (SOCs) need SOC analysts, engineers and supervisors, as well as directors of cybersecurity. A bevy of companies also hire employees and consultants who perform incident response, penetration testing and the like.

With almost 314,000 security-related jobs open in the U.S. alone (and 3.5 million globally by 2021), a reasonably educated and experienced person stands a good chance of getting hired fairly quickly. Adding a security certification or two to your resume not only validates your skills, but it may get you noticed by a hiring manager or provide you more leverage during salary negotiations.

SANS training courses and events vary in format and price, but candidates can expect to pay around $5,800 to $6,610 for a training course. Although the price tag is high, many candidates recommend SANS training for its quality and depth as well as its usefulness in eventually achieving GIAC certification. SANS instructors are usually industry experts and/or full-time security practitioners, and invariably get glowing reviews from course attendees.

Candidates who attempt GIAC certification exams should consider taking practice questions beforehand. A practice questions mimics an real exam and is, therefore, a terrific study aid. All GIAC certification attempts (except for the GSE) come with two free practice exams. A few practice questions are also included with training courses. Candidates who don’t take training can purchase practice questions for $159 each by clicking a link in their SANS/GIAC portal account.

• The U.S. job market has almost 600,000 openings requesting cybersecurity-related skills. 
• Employers are struggling to fill these openings due to a general cyber-skill shortage, with many openings remaining vacant each year. 
• When evaluating prospective information-security candidates, employers should look for certifications as an important measure of excellence and commitment to quality.
• This article is for business owners looking to hire cybersecurity experts, or for individuals interested in pursuing a cybersecurity career. 

Cybersecurity is one of the most crucial areas for ensuring a business’s success and longevity. With cyberattacks growing in sophistication, it’s essential for business owners to protect their companies by hiring qualified cybersecurity experts to manage this aspect of their business. The best candidates will have a certification in information security and cybersecurity. This guide breaks down the top certifications and other guidance you’ll need to make the right hire for your company. It’s also a great primer for individuals who are embarking on a cybersecurity career.

Best information security and cybersecurity certifications

When evaluating prospective InfoSec candidates, employers frequently look to certification as an important measure of excellence and commitment to quality. We examined five InfoSec certifications we consider to be leaders in the field of information security today.

This year’s list includes entry-level credentials, such as Security+, as well as more advanced certifications, like Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA). According to CyberSeek, more employers are seeking CISA, CISM and CISSP certification holders than there are credential holders, which makes these credentials a welcome addition to any certification portfolio.

Absent from our list of the top five is SANS GIAC Security Essentials (GSEC). Although this certification is still a very worthy credential, the job board numbers for CISA were so solid that it merited a spot in the top five. Farther down in this guide, we offer some additional certification options because the field of information security is both wide and varied.

1. CEH: Certified Ethical Hacker

The CEH (ANSI) certification is an intermediate-level credential offered by the International Council of E-Commerce Consultants (EC-Council). It’s a must-have for IT professionals who are pursuing careers in white hat hacking and certifies their competence in the five phases of ethical hacking: reconnaissance, enumeration, gaining of access, access maintenance and track covering. 

CEH credential holders possess skills and knowledge of hacking practices in areas such as footprinting and reconnaissance, network scanning, enumeration, system hacking, Trojans, worms and viruses, sniffers, denial-of-service attacks, social engineering, session hijacking, web server hacking, wireless networks and web applications, SQL injection, cryptography, penetration testing, IDS evasion, firewalls and honeypots. CEH V11 provides a remapping of the course to the NIST/NICE framework’s Protect and Defend (PR) job role category, as well as an additional focus on emerging threats in cloud, OT and IT security, such as fileless malware.

To obtain a CEH (ANSI) certification, candidates must pass one exam. A comprehensive five-day CEH training course is recommended, with the exam presented at the course’s conclusion. Candidates may self-study for the exam but must submit documentation of at least two years of work experience in information security with employer verification. Self-study candidates must also pay an additional $100 application fee. Education may be substituted for experience, but this is evaluated on a case-by-case basis. Candidates who complete any EC-Council-approved training (including with the iClass platform, academic institutions or an accredited training center) do not need to submit an application prior to attempting the exam.

Because technology in the field of hacking changes almost daily, CEH credential holders are required to obtain 120 continuing-education credits for each three-year cycle.

Once a candidate obtains the CEH (ANSI) designation, a logical progression on the EC-Council certification ladder is the CEH (Practical) credential. The CEH (Practical) designation targets the application of CEH skills to real-world security audit challenges and related scenarios. To obtain the credential, candidates must pass a rigorous six-hour practical examination. Conducted on live virtual machines, candidates are presented 20 scenarios with questions designed to validate a candidate’s ability to perform tasks such as vulnerability analysis, identification of threat vectors, web app and system hacking, OS detection, network scanning, packet sniffing, steganography and virus identification. Candidates who pass both the CEH (ANSI) and the CEH (Practical) exams earn the CEH (Master) designation.

CEH facts and figures

Certified Ethical Hacker (CEH) training

While EC-Council offers both instructor-led and online training for its CEH certification, IT professionals have plenty of other options for self-study materials, including video training, practice exams and books.

Pluralsight currently offers an ethical-hacking learning path geared toward the 312-50 exam. With a monthly subscription, you get access to all of these courses, plus everything else in Pluralsight’s training library. Through Pluralsight’s learning path, students can prepare for all of the domains covered in the CEH exam.  

CyberVista offers a practice exam for the CEH 312-50 certification that includes several sets of exam-like questions, custom quizzes, flash cards and more. An exam prep subscription for 180 days costs $149 and gives candidates access to online study materials, as well as the ability to obtain the materials for offline study. Backed by its “pass guarantee,” CyberVista is so confident its practice exam will prepare you for the CEH exam that the company will refund its practice questions costs if you don’t pass.

FYI: Besides certifications in information security and cybersecurity, the best IT certifications cover areas such as disaster recovery, virtualization and telecommunications.

2. CISM: Certified Information Security Manager

The CISM certification is a top credential for IT professionals who are responsible for managing, developing and overseeing information security systems in enterprise-level applications or for developing organizational security best practices. The CISM credential was introduced to security professionals in 2003 by the Information Systems Audit and Control Association (ISACA).

ISACA’s organizational goals are specifically geared toward IT professionals who are interested in the highest-quality standards with respect to the auditing, control and security of information systems. The CISM credential targets the needs of IT security professionals with enterprise-level security management responsibilities. Credential holders possess advanced and proven skills in security risk management, program development and management, governance, and incident management and response.

Holders of the CISM credential, which is designed for experienced security professionals, must agree to ISACA’s code of ethics, pass a comprehensive examination, possess at least five years of experience in information security management, comply with the organization’s continuing education policy and submit a written application. Some combinations of education and experience may be substituted for the full experience requirement.

The CISM credential is valid for three years, and credential holders must pay an annual maintenance fee of $45 (ISACA members) or $85 (nonmembers). Credential holders are also required to obtain a minimum of 120 continuing professional education (CPE) credits over the three-year term to maintain the credential. At least 20 CPE credits must be earned every year.

CISM facts and figures

Other ISACA certification program elements

In addition to CISM, ISACA offers numerous certifications for those interested in information security and best practices. Other credentials worth considering include the following:

• Certified Information Systems Auditor (CISA)
• Certified in the Governance of Enterprise IT (CGEIT)
• Certified in Risk and Information Systems Control (CRISC)

The CISA designation was created for professionals working with information systems auditing, control or security and is popular enough with employers to earn it a place on the leaderboard. The CGEIT credential targets IT professionals working in enterprise IT management, governance, strategic alignment, value delivery, and risk and resource performance management. IT professionals who are seeking careers in all aspects of risk management will find that the CRISC credential nicely meets their needs.

Certified Information Security Manager (CISM) training

Pluralsight offers a CISM learning path containing five courses and 17 hours of instruction. The courses cover the domains addressed in the exam, but the learning path is aimed at the CISM job practice areas. 

CyberVista offers a CISM online training course in both live and on-demand formats. The course includes more than 16 hours of training videos, supplementary lessons, custom quizzes, practice exam questions and access to experts through the instructor. As with other CyberVista courses, the CISM training course comes with a “pass guarantee.” 

Did you know?: According to CyberSeek, there are enough workers to fill only 68% of the cybersecurity job openings in the U.S. A cybersecurity certification is an important way to demonstrate the knowledge and ability to succeed in these job roles.

3. CompTIA Security+

CompTIA’s Security+ is a well-respected, vendor-neutral security certification. Security+ credential holders are recognized as possessing superior technical skills, broad knowledge and expertise in multiple security-related disciplines.

Although Security+ is an entry-level certification, the ideal candidates possess at least two years of experience working in network security and should consider first obtaining the Network+ certification. IT pros who obtain this certification have expertise in areas such as threat management, cryptography, identity management, security systems, security risk identification and mitigation, network access control, and security infrastructure. The CompTIA Security+ credential is approved by the U.S. Department of Defense to meet Directive 8140/8570.01-M requirements. In addition, the Security+ credential complies with the standards for ISO 17024.

The Security+ credential requires a single exam, currently priced at $381. (Discounts may apply to employees of CompTIA member companies and full-time students.) Training is available but not required.

IT professionals who earned the Security+ certification prior to Jan. 1, 2011, remain certified for life. Those who certify after that date must renew the certification every three years to stay current. To renew, candidates must obtain 50 continuing-education units (CEUs) or complete the CertMaster CE online course prior to the expiration of the three-year period. CEUs can be obtained by engaging in activities such as teaching, blogging, publishing articles or whitepapers, and participating in professional conferences and similar activities.

CompTIA Security+ facts and figures

CompTIA Security+ training

You’ll find several companies offering online training, instructor-led and self-study courses, practice exams and books to help you prepare for and pass the Security+ exam.

Pluralsight offers a Security+ learning path as a part of its monthly subscription plan for the latest SY0-601 exam. Split into six sections, the training series is more than 24 hours long and covers attacks, threats and vulnerabilities; architecture and design; implementation of secure solutions; operations and incident response; and governance, risk and compliance.

CyberVista offers a Security+ practice exam so you can test your security knowledge before attempting the SY0-601 exam. The test comes with a 180-day access period and includes multiple sets of exam questions, key concept flash cards, access to InstructorLink experts, a performance tracker and more. As with CyberVista’s other offerings, this practice exam comes with a “pass guarantee.”

4. CISSP: Certified Information Systems Security Professional

CISSP is an advanced-level certification for IT pros who are serious about careers in information security. Offered by the International Information Systems Security Certification Consortium, known as (ISC)2 (pronounced “ISC squared”), this vendor-neutral credential is recognized worldwide for its standards of excellence.

CISSP credential holders are decision-makers who possess the expert knowledge and technical skills necessary to develop, guide and manage security standards, policies and procedures within their organizations. The CISSP certification continues to be highly sought after by IT professionals and is well recognized by IT organizations. It is a regular fixture on most-wanted and must-have security certification surveys.

CISSP is designed for experienced security professionals. A minimum of five years of experience in at least two of (ISC)2’s eight common body of knowledge (CBK) domains, or four years of experience in at least two of (ISC)2’s CBK domains and a college degree or an approved credential, is required for this certification. The CBK domains are security and risk management, asset security, security architecture and engineering, communications and network security, identity and access management, security assessment and testing, security operations, and software development security.

(ISC)2 also offers three CISSP concentrations targeting specific areas of interest in IT security:

• Architecture (CISSP-ISSAP)
• Engineering (CISSP-ISSEP)
• Management (CISSP-ISSMP)

Each CISSP concentration exam is $599, and credential seekers must currently possess a valid CISSP.

An annual fee of $125 is required to maintain the CISSP credential. Recertification is required every three years. To recertify, candidates must earn 40 CPE credits each year, for a total of 120 CPE credits within the three-year cycle.

CISSP facts and figures

Certified Information Systems Security Professional (CISSP) training

Given the popularity of the CISSP certification, there is no shortage of available training options. These include classroom-based training offered by (ISC)2, as well as online video courses, practice exams and books from third-party companies.

Pluralsight’s CISSP learning path includes 12 courses and 25 hours of e-learning covering the security concepts required for the certification exam. Available for a low monthly fee, the CISSP courses are part of a subscription plan that gives IT professionals access to Pluralsight’s complete library of video training courses.

When you’re ready to test your security knowledge, you can take a simulated exam that mimics the format and content of the real CISSP exam. Udemy offers CISSP practice questions to help you prepare for this challenging exam.

5. CISA: Certified Information Systems Auditor

ISACA’s globally recognized CISA certification is the gold standard for IT workers seeking to practice in information security, audit control and assurance. Ideal candidates can identify and assess organizational threats and vulnerabilities, assess compliance, and provide guidance and organizational security controls. CISA-certified professionals demonstrate knowledge and skill across the CISA job practice areas of auditing, governance and management, acquisition, development and implementation, maintenance and service management, and asset protection.

To earn the CISA certification, candidates must pass one exam, submit an application, agree to the code of professional ethics, agree to the CPE requirements and agree to the organization’s information systems auditing standards. In addition, candidates must possess at least five years of experience working with information systems. Some substitutions for education and experience with auditing are permitted.

To maintain the CISA certification, candidates must earn 120 CPE credits over a three-year period, with a minimum of 20 CPE credits earned annually. Candidates must also pay an annual maintenance fee ($45 for members; $85 for nonmembers).

CISA facts and figures

Certified Information Systems Auditor (CISA) training

Training opportunities for the CISA certification are plentiful. Udemy offers more than 160 CISA-related courses, lectures, practice exams, question sets and more. On Pluralsight, you’ll find 12 courses with 27 hours of information systems auditor training covering all CISA job practice domains for the CISA job practice areas.

Beyond the top 5: More cybersecurity certifications

In addition to these must-have credentials, many other certifications are available to fit the career needs of any IT professional interested in information security. Business owners should consider employing workers with these credentials as well.

• The SANS GIAC Security Essentials (GSEC) certification remains an excellent entry-level credential for IT professionals seeking to demonstrate that they not only understand information security terminology and concepts but also possess the skills and technical expertise necessary to occupy “hands-on” security roles.
• If you find incident response and investigation intriguing, check out the Logical Operations CyberSec First Responder (CFR) certification. This ANSI-accredited and U.S. DoD-8570-compliant credential recognizes security professionals who can design secure IT environments, perform threat analysis, and respond appropriately and effectively to cyberattacks. Logical Operations also offers other certifications, including Master Mobile Application Developer (MMAD), Certified Virtualization Professional (CVP), Cyber Secure Coder and CloudMASTER.
• The associate-level Cisco Certified CyberOps Associate certification is aimed at analysts in security operations centers at large companies and organizations. Candidates who qualify through Cisco’s global scholarship program may receive free training, mentoring and testing to help them achieve a range of entry-level to expert certifications that the company offers. CompTIA Cybersecurity Analyst (CySA+), which launched in 2017, is a vendor-neutral certification designed for professionals with three to four years of security and behavioral analytics experience.
• The Identity Management Institute offers several credentials for identity and access management, data protection, identity protection, identity governance and more. The International Association of Privacy Professionals (IAPP), which focuses on privacy, has a small but growing number of certifications as well.
• The SECO-Institute, in cooperation with the Security Academy Netherlands and APMG, is behind the Cyber Security & Governance Certification Program; SECO-Institute certifications aren’t well known in the United States, but their popularity is growing. 
• It also may be worth your time to browse the Chartered Institute of Information Security accreditations, the U.K. equivalent of the U.S. DoD 8570 certifications and the corresponding 8140 framework.

Also, consider these five entry-level cybersecurity certifications for more options.

Tip: Before you decide to purchase training for a certification or an exam voucher, see if your employer will cover the cost. Employers may cover all or part of the cost if you have a continuing education or training allowance, or if the certification is in line with your current or potential job duties.

Information security and cybersecurity jobs

According to CyberSeek, the number of cybersecurity job openings in the U.S. stands at almost 598,000, with about 1.05 million cybersecurity professionals employed in today’s workforce. Projections continue to be robust: The U.S. Bureau of Labor Statistics expects 33% growth in information security analyst positions between 2020 and 2030; in comparison, the average rate of growth for all occupations is about 8%.

Security-related job roles include information security specialist, security analyst, network security administrator, system administrator (with security as a responsibility) and security engineer, as well as specialized roles, like malware engineer, intrusion analyst and penetration tester.

Average salaries for information security certified and security engineers – two of the most common job roles – vary depending on the source. For example, SimplyHired reports about $74,000 for specialist positions, whereas Glassdoor‘s national average is about $108,000. For security engineers, SimplyHired reports almost $112,000, while Glassdoor’s average is more than $111,000, with salaries on the high end reported at $261,000. Note that these numbers frequently change as the sources regularly update their data. [Meet the man who kept Microsoft safe and secure for more than a decade.]

Our informal job board survey from April 2022 reports the number of job posts nationwide in which our featured certifications were mentioned on a given day. This should provide you an idea of the relative popularity of each certification.

Job board search results (in alphabetical order by cybersecurity certification)

Did you know?: Cybersecurity matters even when you’re traveling. Find out how to keep your computer secure when you’re on the road for business or pleasure.

The importance of hiring information security and cybersecurity professionals

According to Risk Based Security‘s 2021 Year End Data Breach Quickview Report, there were 4,145 publicly disclosed breaches throughout 2021, containing over 22 billion records. This is the second-highest number of breached records, after an all-time high the year before. The U.S. was particularly affected, with the number of breaches increasing 10% compared with the previous year. More than 80% of the records exposed throughout 2021 were due to human error, highlighting an ever-increasing need for cybersecurity education, as well as for highly skilled and trained cybersecurity professionals. [Learn how to recover from a data breach.]

If you’re serious about advancing your career in the IT field and are interested in specializing in security, certification is a great choice. It’s an effective way to validate your skills and show a current or prospective employer that you’re qualified and properly trained. If you’re a business owner, hiring certified professionals and skilled IT managers can help prevent cyberattacks and provide confidence that your company’s security is in the right hands. In the meantime, review our quick cybersecurity tips to Excellerate your company’s protection.

Jeremy Bender contributed to the writing and research in this article.

General

What are the requirements to maintain an ABA Professional Certification? 

Submit CE credit minimum requirements every 3 years, pay the certification annual fee and adhere to the Professional Code of Ethics. View Maintain Certification webpage for details.

How are CE credits reported?

Submit CE credit minimum requirements every 3 years, pay the certification annual fee and adhere to the Professional Code of Ethics. View Maintain Certification webpage for details.

Are CE credits reported by knowledge area or topic?

Listing a specific knowledge area or Topic is not required upon submission of CE credit.

How do I know if a training program is eligible for CE credit?

Search for APPROVED NON-ABA training from your Certification Manager record under ADD CE CREDIT. Contact external training provider prior to the event for credit approval information.

Training not pre-approved must go through a review process requiring a $50 fee.

Are CE credits required every year?

CE credit must be submitted by the 3-year CE cycle due date listed on your Certification Manager dashboard and not on an annual basis.

Is there an annual fee to maintain a certification?

There is an annual fee invoiced in October each year. Credit card payment made through your Certification Manager is due January 31.

Note: A $50 late fee applies after the due date.

Certified Professional

Can trainings completed prior to passing the exam and earning my certification count as continuing education (CE) credits?

The intention of a continuing education program is to promote continued knowledge and competence among certified professionals and to provide a basis for recertification. Therefore, professional training that is relevant to your certification can only be counted as continuing education and eligible for CE credit after successful completion of the exam.

How do I know if a training event has credit approval?

From your Certification Manager dashboard, complete a search under ADD CE CREDIT using the APPROVED NON-ABA CE option. Contact external training provider prior to the event for credit approval information.

Will internal bank training be eligible for CE credit?

Check with your training manager for in-house training approved for CE credit. 

Note: Training manager may contact [email protected] to get additional details.

How do I submit CE credit?

From your Certification Manager, hover over ADD CE CREDIT to choose the applicable option:

• APPROVED ABA CE: search to apply credit for ABA training completed through your organization training record.
• APPROVED NON-ABA CE: search to apply credit for approved training completed through an external training provider.
• SUBMIT CE FOR REVIEW: $50 fee will be required beginning March 1, 2022, for external training that has not been pre-approved.

When will CE credit appear on my Certification dashboard once submitted?

APPROVED ABA and APPROVED NON-ABA CE entries appears within 2 hours of your submission.

External training not pre-approved may take up to 5 business days.

Can I submit the same program for CE credit more than once?

A request for the same program more than one time during your 3-Year CE cycle will be declined as a DUPLICATE ENTRY. You may resubmit the same program every 3 years (or in the next CE cycle).

How do I verify a credit submission applied to my current CE cycle?

From your Certification Manager, click on EARNED CREDIT box to View CE Details and choose the current cycle date.

How do I edit a CE submission?

If you have marked your entry complete, send an email to [email protected] with details concerning your correction.

If your entry has a status of Registered (has not been marked complete), choose View Training Details from the dropdown and click Edit External Training in the upper left corner to complete an edit. Make sure you click Mark Complete to finalize your submission.

Do I need to send a certificate as proof of CE credit I submitted?

A certificate is not required as proof however you should keep a copy on hand for the duration of your 3-year CE cycle.

Can I earn excess credits (Carryover credit)?

If you submit excess CE credits over the course of your 3-Year CE cycle, ABA will automatically carry over up to 1/3 of your minimum required credit in the new CE cycle.

Carry-over credit is a benefit offered to those who report their CE credit by the due date. Carryover credit is added in March following the close of the CE cycle.

When is my 3-year CE cycle due date?

CE credit is due no later than January 31, three years following your start date. View 3-Year CE cycle start and end dates on your Certification Manager.

What happens if I fail to earn the required CE credit by the due date?

CE credit must be entered before your cycle can be advanced to a new 3-Year CE cycle. Email notifications alert you of possible decertification when CE credits do not meet the required amount. Decertification occurs 30 days after the due date.

How do I request a name change on my certification record?

Email your request to [email protected] with a copy of a government issued photo ID. You will receive email confirmation when the edit is complete.

How do I make a certification referral?

If you refer a candidate who subsequently sits for an exam, ABA Professional Certifications will waive your next annual certification fee. To submit a referral, please use the Certification Referral Form. In order to receive a waiver of your annual fee, we must receive the referral before the exam candidate submits his or her exam application and pays the exam fee.

Editorial Note: We earn a commission from partner links on Forbes Advisor. Commissions do not affect our editors' opinions or evaluations.

Certification now follows a rolling model for applications and approvals. If you have questions after reviewing this website, please contact cert@nullesa.org or 202-833-8773.

The period of certification lasts for 5 years, retroactive to the first day of the month the application was approved and expiring on final day of the same month 5 years hence. ESA staff will communicate with you about your status beginning at least 60 days prior to expiration, and will additionally remind you to submit your CEU data on a regular basis.

If you currently hold a certification from pre-2021 and will expire the next June from now, you should recertify in the spring of the year your certification expires; if your certification expired in the previous June, you may still recertify or upgrade.

We allow 2 years’ grace periods to recertify or upgrade, but you will be required to pay a penalty fee if your certification has lapsed beyond that grace period. All recertifications at all levels (except Emeritus) cost $25 for ESA Members and $50 for non-members. 

Starting in 2022, the penalty fee is the cost of recertification for each year of lapse, with the first 2 years waived if you recertify within 2 years. In other words:  

0 yr lapsed: $25 for recertify 

1 yr lapsed: $25 for recertify (1 yr of back recertification fees waived)  

2 yr lapsed: $25 for recertify (2 yr of back recertification fees waived)  

3 yr lapsed: $75 for recertify  

4 yr lapsed: $100 for recertify 

Candidates for certification must have completed at least a bachelor’s degree or a higher degree in ecology or a related science. Completed undergraduate or graduate coursework must include the following, totaling 42 semester credit hours. Full requirements include areas of coursework and should include some core topics.

Certified Ecologist and Senior Ecologist certification holders who hold that status for at least 10 consecutive years and are no longer working full-time may upgrade to each level’s respective Emeritus/ta designation. Contact cert@nullesa.org to learn more.

• Professional experience accrues as soon as the minimum education requirements are met (typically with an appropriate bachelor’s degree). Professional experience during graduate studies shall be counted the same as any other professional experience regardless of whether it was undertaken during a degree program such as a master’s or doctoral program.
• For recertifications, courses completed as part of a graduate degree program (or outside a degree program) may be counted toward continuing education in the appropriate category.
• If courses during graduate training are used to satisfy the minimum education requirements, professional work experience may be counted after the last such course is successfully completed.
• Provide an appropriate explanation of time spent in full-time employment (e.g. if working through school, during a gap year, etc.) in your application.
• Length of experience will be evaluated only up to the application submission date.

Continuing Education

Please note that beginning 2021, all newly certified ecologists are required to complete 44 continuing education units over 5 years to be eligible for recertification or upgrade. Currently certified ecologists will be permitted to recertify or upgrade per their original requirements up to 2025; beginning with 2026, all recertifications and upgrades will require having met the CEU requirements. The ESA Board of Professional Certification approved this framework in January 2021.

Certified ecologists should report their CEU as they are earned, or at least on an annual basis. You can see how to do so here.

Interpretive leeway will be given to participants to identify suitable professional development opportunities per the requirements. ESA is partnering with other scientific organizations and training bodies to recommend opportunities for CEU in addition to the content that ESA provides — see the directory. Participants are encouraged to share ideas with staff as well.

All ecologists certified by ESA shall conduct their activities in accordance with the ESA Code of Ethics and with the highest standards of professional conduct and personal honor. 

Application Materials

You can review the full application requirements here.

Here are additional details about the requirements for each certification level.

Ecologist in Training

Associate Ecologist

Ecologist

Certified Ecologist Emeriti

Senior Ecologist

Senior Ecologist Emeriti

Who is the Information Systems Development Certificate program for?

Companies of all sizes depend on information systems to manage their operations, production, communications, records, distribution, sales and customer interactions. Information systems often need to be developed and/or customized for the specific needs of the company or industry and with business goals in mind.

Drexel’s Post-Baccalaureate/Graduate Certificate in Information Systems Development is an interdisciplinary certificate program jointly offered by Drexel's LeBow College of Business and College of Computing & Informatics (CCI) that provides broad knowledge on analyzing, designing and deploying information systems.

This certificate is part of a suite of five Business Information Technology certificates that can be applied toward Drexel’s Master of Science in Business Information Technology (MSBIT), also offered through LeBow and CCI. Three certificates must be completed to receive the MS degree, including our required foundational Certificate in Information Technology & Management.

Fast Facts

Information Systems Development Curriculum

IMPORTANT NOTE: Drexel operates on the quarter, not semester, system, offering classes during four 10-week terms throughout the year. 

The courses in this certificate provide you with both technical and business skills and knowledge, and they cover business agility, database management, and the latest approaches to development of information systems and application software. 

The curriculum includes five required courses:

• INFO 540: Perspectives on Information Systems
• INFO 650: Database Management Systems 
• CT 630: Application Software Construction and Operation
• MIS 624: System Analysis & Design
• MIS 652: Business Agility and IT

Please visit Drexel’s Course Catalog for a full description of each required course for this program. You can also find a sample Plan of Study for the certificate.

Information Systems Development Admissions Requirements

• A completed application for the online format or on-campus format.
• A four-year bachelor's degree from a regionally accredited institution in the United States or an equivalent international institution.
• A GPA of 3.0 or higher, in a completed degree program, bachelor’s degree or above.
• Official final transcripts from ALL Colleges/Universities attended. Please note: For students who have attended an institution outside of the US, it is highly recommended to submit a NACES approved course-by-course transcript evaluation (i.e., WES) for expedited review of your application. This approved evaluation will take the place of the transcript requirement to complete your application.
• Graduate Management Admission Test (GMAT) and/or the Graduate Record Examination (GRE) Scores are not required.
• One letter of recommendation required, two suggested
• Essay/Statement of Purpose
• Current Resume.
• Students must have access to a computer that meets or exceeds CCI’s computer requirements
• Additional requirements for International Students.

Please visit our Graduate Admissions section for application deadlines.

Customize Your Education with Our Business Information Technology Certificates

CCI and LeBow also offer a suite of graduate certificates to allow students to customize their education. In addition to the Information Systems Development Certificate, we offer the following modular, stackable certificates in Business Information Technology:

Note: Students in the MSBIT will be required to complete the Information Technology & Management certificate in addition to two other certificates listed above.

Additional Information

For more information, please contact Amanda Tessler, College of Computing & Informatics’ graduate recruitment specialist, at cciinfo@drexel.edu or Stavrula Katsirmas, LeBow College of Business’ associate director of integrated student experience and retention, at sk697@drexel.edu.