Question for all of the security pros: In my role at my company, one of the main tasks that I have is to guide my customers on all of their technology needs so as to create a proactive network environment thereby eliminating the technology noise (I can't print, my laptop won't boot...etc) for them.
On a higher level, this proactive mentality goes down the line of security. Many of my customers deal in the financial industry and house PII information. With that comes the audits from the SEC. I likewise need to deal with PCI and HIPPA compliance, many of which are "do your best effort" to be compliant.
My goal is to continue having a third part company perform the actual audits of my customers however I would like the high level knowledge to point them in the right direction. I also want to posses the knowledge where I can go into a new environment and know immediately what they need to implement to be (or to come close to) compliant.
My first thought was the training class for CISM, however, I am not working with fortune 100 (or even 500) companies. If I am going to go through training, I would like to attain a certificate/designation after the completion of a test.
With this in mind, I'd like to hear what the community recommends. Thank you for your time.