| Author |
value of cissp ???
|
|
| darthfeces 2001-10-17, 9:03 am |
| i am considering taking the cissp while waiting
for the cisco ids,pix and vpn books in order to
finish my cisco security cert.
would anyone like to comment on the value of
or study guide for cissp ???
thanks | |
| BlueBaron 2001-10-17, 12:33 pm |
| The value of that certification (or any, for that matter) really depends on what you take from it. If you're talking sheer monetary gains stemming from just those letters on your resume . . . who knows? If you're talking about what you could LEARN, well that's up to you . . . after all, you get out of it what you put into it. | |
| darthfeces 2001-10-17, 10:24 pm |
| thanks for your opinion
my bad for being vague
what i was looking for is if anyone out
there has or is studying for or has passed
this cert and how they viewed it.
since it covers a
"common body of knowledge" i assume it may be
more thorough than the cisco security cert.
and i'm looking for somthing security-wise while
waiting for the dec publish of the cisco texts. | |
| depamo 2001-10-18, 8:53 am |
| Yes, this is a big part of industry at this time but you should find something that you want to do in Security and find the best certification that you can to pursue that goal.
CISSP is a very highly sought after certification in the security industry right now. Testing is usually only once a quarter (my area has one in December) and the topics of the '10 Domains' are more geared twords overall knowledge and logical information. Not very specific enough to do anything on any one particular system but when matched with other certifications (MCSE or CCNP and such) it has very good returns on the investement on taking it.
By itself it will get you certified to do policy and some management skills for Security specific jobs.
Good luck!! | |
| darthfeces 2001-10-18, 10:05 am |
| thanks,
my boss has been appointed "information security
officer" @ my company and is going to persue this,
i guess it's more appropriate to HIS job.
i think i'll follow though ccie and cisco security
cert and keep this in mind for later.
 | |
| depamo 2001-10-19, 8:06 am |
| We have two CISSP certified people in the office and I have to explain how their theory translates to the real world since they couldn't configure a DSL router.
Overall, they get the big concepts really well as far as what the overall system priorities should be and general overviews policy. Where I come in is where the rubber meets the road. Policy is great but we cannot do this like that, here is the alternative that will execute the same idea that you want to do.
A good example is repudiation of the network when it is running. At one site there is a multi T1 connection (10 parallel) where generally speaking, most hacking attacks come through. In their mind all possible attacks need to be monitored and kept for later use. Rubber meets the road where I tell them that we don't have enough memory capacity to store all the IDS and router syslog traffic like that for very long (the system has a Tera Byte Raid) but we can maintain statistics by IP Address in a database and keep detail traffic related incidents for a certain period (about a month) but then they would have to go into deep storage (WORM) or be removed.
They had the right idea but it wasn't pratical to implement. That is the biggest difference between the two certifications. If you have the opprotunity to take the exam paid for by the company that you work for - take it!! Great resume material. If you have to pay, you might want to consider Cisco to stay in your track so you can implement your boss's 'great ideas'. | |
| darthfeces 2001-10-19, 8:29 am |
| thanks,
my boss happens to be the "hands on " type
recently promoted because administrative types
up above realize that they know what they WANT
but havent got the foggiest idea how to do it.
right now we have our pix using private eye
to log to a 40gb drive. i estimate we have 3
months before we have to dump to tape.
due to recent events there is a spending freeze
i have the money , but can't use it.
luckily i purchased caslow's book before the
icing and am on chapter 10. so i think i'll
take the written in dec and buy the soon to be published security books in dec when they are
released.
thanks, looks like i'll keep this on the back burner for now. | |
| THELAIR 2001-10-21, 1:12 am |
| Im a CISSP here... not sure of anyone else on the forums is.
What do you want to know about it?
It helped me land a job, but alot of people say that its 50 miles wide and 2 miles deep. However it is a pretty gruelling test. | |
| darthfeces 2001-10-21, 5:38 am |
| about how long did you study for it and what did
you use ? | |
| depamo 2001-10-21, 6:38 pm |
| I have just applied for taking the exam in December. Should suck something horrible since the 'book' that everyone said that I should purchase is about 500 pages long (about the study depth of routing).
For the same reason, hoping to jump jobs in the near future and want to use this as a catapult. The more I see of jobs, the more they are looking for this certification. So I am on board!!
Any assistance in study materials would be helpful!! |
|
|
|