CertFirst is committed to upholding the highest ethical and professional standards in cybersecurity training and certification programs. This Code of Ethics and Professional Conduct outlines the responsibilities and obligations of all candidates participating in CertFirst programs, whether directly or indirectly, through our affiliated partners, including but not limited to CompTIA, Biocertification, EC-Council, and CertCop. By enrolling in any CertFirst training program, candidates acknowledge and agree to comply with the ethical and professional guidelines outlined below.

1. Confidentiality & Data Protection

Candidates must maintain the confidentiality of all proprietary and sensitive information obtained during professional engagements. This includes, but is not limited to, client lists, business processes, personal data, and security protocols. Candidates shall not collect, share, sell, or transfer personal information (e.g., names, email addresses, Social Security numbers, or unique identifiers) to third parties without explicit consent. Any unauthorized disclosure may result in legal and disciplinary actions.

2. Intellectual Property Protection

Candidates are required to respect and safeguard intellectual property, including copyrighted materials, software, and proprietary methodologies. They shall not engage in plagiarism, unauthorized distribution, or infringement of intellectual property rights belonging to CertFirst, its partners, or any other entities.

3. Security & Public Safety

Candidates must report any potential security threats, vulnerabilities, or risks to the appropriate authorities if they pose a danger to clients, organizations, or the public. Any malicious intent or activity that jeopardizes cybersecurity will be met with strict penalties, including disqualification from certification programs.

4. Professional Competence & Integrity

Candidates must offer services only within their areas of expertise and remain transparent about their qualifications, education, and training. Misrepresentation of credentials, experience, or expertise is strictly prohibited and may result in certification revocation.

5. Ethical Use of Technology

The use of technology must adhere to ethical and legal guidelines. Candidates must not utilize, distribute, or promote software or processes obtained illegally or unethically, including hacking tools, pirated software, or unauthorized access mechanisms.

6. Financial Integrity

Candidates must uphold financial honesty and avoid unethical practices, including fraud, bribery, double billing, or deceptive financial transactions related to their professional services.

7. Client & Employer Asset Protection

Candidates must use client and employer resources responsibly and only with proper authorization. Any misuse or unauthorized access to systems, data, or assets is strictly prohibited.

8. Conflict of Interest Disclosure

Candidates must disclose any actual or potential conflicts of interest to CertFirst or relevant parties. Individuals involved in CertFirst certification exam content creation are prohibited from sitting for the same exam. Additionally, any affiliations with competing organizations or products must be disclosed when serving as a consultant for CertFirst.

9. Project Management & Professional Development

Candidates are expected to engage in effective project management and continuous learning. They should contribute to the field by sharing knowledge with peers and raising awareness of cybersecurity best practices.

10. Ethical Employment & Professional Conduct

Candidates must adhere to the highest ethical and professional standards when seeking employment or providing services. Misrepresentation of skills, experience, or certifications is strictly prohibited.

11. Cybersecurity Responsibility

Candidates must not engage in or associate with individuals or groups involved in cybercrime, malicious activities, or unauthorized access to client or organizational systems.

12. Penetration Testing Ethics

All penetration testing activities must be conducted only with explicit authorization and within legal boundaries. Candidates must avoid affiliations with groups promoting illicit hacking activities.

13. Appropriate Certification Use

Candidates must accurately represent their CertFirst certifications, logos, and credentials without misrepresentation. Any false claims or misleading information about certification status or CertFirst branding in publications, documents, or public forums are strictly prohibited.

14. Legal Compliance

Candidates must comply with all applicable laws and regulations. Any prior or current legal convictions must be disclosed to CertFirst, and any legal infractions related to cybersecurity or professional ethics may result in disciplinary action.

15. Certification Integrity & Compliance

Candidates must use their certification credentials only within their granted scope and in compliance with CertFirst policies. If certification is suspended or revoked, the candidate must cease using CertFirst trademarks and return any issued certificates.

16. Health & Certification Maintenance

Candidates must notify CertFirst of any medical or physical conditions that may prevent them from fulfilling certification requirements. Maintaining certification through required continuing education or renewal processes within the specified timeframe is mandatory.

17. Exam Integrity

Candidates must uphold the integrity of CertFirst certification exams. Cheating, exam security breaches, misconduct, or any behavior compromising exam confidentiality is strictly prohibited and may result in permanent disqualification from CertFirst programs.

Acknowledgment & Agreement
By enrolling in any CertFirst training or certification program, candidates acknowledge that they have read, understood, and agreed to comply with the terms outlined in this Code of Ethics and Professional Conduct. Any violation of these terms may result in immediate disciplinary action, including termination of enrollment, certification revocation, and legal consequences where applicable.

CertFirst and its affiliated partners are not liable for any unethical or illegal actions taken by candidates before, during, or after their participation in CertFirst training programs. Candidates are solely responsible for their professional conduct and legal compliance.

CertFirst reserves the right to update or modify this Code of Ethics and Professional Conduct at any time without prior notice.

For any questions or clarifications regarding these policies, please contact CertFirst at info@certfirst.com.