Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
josephoracle
Newcomer II
‎07-31-2018 03:40 PM
‎07-31-2018 03:40 PM

Security Game Creation for Mobile CPE Worthy

I am at the tail of of the development of the early access version a mobile game that teaches security. It will be available on the Google Play Store. What are the chances this will be able to count towards my CPEs?

Reply
0 Kudos
13 Replies
SamanthaO_isc2
ISC2 Former Staff ISC2 Former Staff
ISC2 Former Staff
‎07-31-2018 04:22 PM
‎07-31-2018 04:22 PM

Hello @josephoracle

 

This is a really great question. I would recommend that you reach out to Member Support, you can find contact info here. It may be best if you include some information about time, research, etc. that went into creating and building the app, this way the team has all of the information they would need to make a determination. 

 

Feel free to head back here when you get an answer to let the Community know what, if any, CPE's you were able to claim for your work.  

 

 

Samantha O'Connor
(ISC)² Online Community Manager
Reply
0 Kudos
rslade
Influencer II
‎07-31-2018 05:37 PM
‎07-31-2018 05:37 PM

> josephoracle (Viewer) posted a new topic in Customer Support on 07-31-2018 03:40

> I am at the tail of of the development of the early access version a mobile game
> that teaches security. It will be available on the Google Play Store. What are
> the chances this will be able to count towards my CPEs?

Ah, but what's important is: will *we* be able to get CPEs for *playing* your
game?

====================== (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca slade@victoria.tc.ca rslade@computercrime.org
I have no color prejudices nor caste prejudices nor creed
prejudices. All I care to know is that a man is a human being,
and that is enough for me; he can't be any worse. - Mark Twain
victoria.tc.ca/techrev/rms.htm http://www.infosecbc.org/links
http://blogs.securiteam.com/index.php/archives/author/p1/
http://twitter.com/rslade

............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
Reply
0 Kudos
Shannon
Community Champion
‎07-31-2018 11:25 PM
‎07-31-2018 11:25 PM

@rslade, earning CPEs for playing the game might be too much to expect --- but the community could at least dole out Kudos / Badges for it... Man LOL Man Wink

 

Now, all jokes aside,

 

@josephoracle, that's a great contribution to Information Security awareness, whether or not you'll be entitled to CPEs. Once it's developed, I'll be happy to give you a review / recommendations.

 

@SamanthaO_isc2, when determining eligibility for CPEs, I do hope (ISC)2 will evaluate the app's security and not just its functionality.

 

 

Shannon D'Cruz,
CISM, CISSP

www.linkedin.com/in/shannondcruz
Reply
0 Kudos
denbesten
Community Champion
‎08-01-2018 01:37 PM
‎08-01-2018 01:37 PM

@Shannon wrote:

 

...when determining eligibility for CPEs, I do hope (ISC)2 will evaluate the app's security and not just its functionality. 

The more likely question (ISC)² would consider is if app development is similar to writing educational materials and what sorts of limitations should apply (e.g. number of hours per year).

 

I would think that performing code reviews is well out of scope for (ISC)², in the same way that they do not attest to the accuracy of papers and webinars that you submit for CPE approval. 

 

Normally, evaluating the app's security/functionality is done by the Google and Apple app stores (with varying degrees of success).  This is why I never side-load apps on my phone -- at least I have assurances that some level of testing has been completed.  @josephoracle, I am glad that you will be submitting your app thorough the appropriate app store(s) so that I have the opportunity to check it out.

Reply
0 Kudos
Shannon
Community Champion
‎08-01-2018 02:37 PM
‎08-01-2018 02:37 PM

@denbesten, yes, you're right about the code reviews being out of (ISC)2's scope, so I'll rephrase my line:

 

'...when determining eligibility for CPEs, I do hope (ISC)2 will take into consideration the app's security, and not just its functionality.'

 

 

 

Shannon D'Cruz,
CISM, CISSP

www.linkedin.com/in/shannondcruz
Reply
0 Kudos
josephoracle
Newcomer II
‎08-01-2018 04:03 PM
‎08-01-2018 04:03 PM

Hahaha. Great question. Once it is in a complete state, it should be a good candidate for credit. 

 

Funny you should say that because I've debated doing a CISSP specific study version that would eventually be offered in VR. 

Reply
0 Kudos
josephoracle
Newcomer II
‎08-01-2018 04:08 PM
‎08-01-2018 04:08 PM

The security of the app itself is very straightforward and it gets the basic scrutiny of all apps submitted to the Google Play Store, where it now sits as an internal test. 

Reply
0 Kudos
josephoracle
Newcomer II
‎08-01-2018 04:28 PM
‎08-01-2018 04:28 PM

At this stage, the game is a simple first person shooter style game with multiple choice questions.
Reply
0 Kudos
josephoracle
Newcomer II
‎08-01-2018 04:32 PM
‎08-01-2018 04:32 PM

Level 1: System FundamentalsLevel 1: System FundamentalsLevel 1: System FundamentalsLevel 1: System Fundamentals

 

Reply
0 Kudos