|
|
|
| Hello all. New poster but have read many posts in the past and would appreciate input. I currently work as an IS Auditor and want to get into the Systems Security profession in the future, preferebly in a consultants role. I currently am attending a loca IT training school to get a better handle on the tech issues. The ciricullum goes A+, N+, Serv+, MCSE, CCNA, CCDA and a couple more. It is a good track but I'm thinking it may be a bit extensive (not to mention expensive) for what I want to do. I'm thinking about doing self study and get the basics (A+, Net + and Server +) and then continue w/ the security focused cert's, ie checkpoint, etc. Also, self study using Hacker Exposed and the like. I'll also be taking the CISA exam next June (1 year away). This way I can spend the tuition on home equipment instead. Any thoughts or direction would be great.
Thanks. | |
| kk1186 2001-06-28, 8:06 pm |
| CISA is great but is it difficult to pass? What's the format of this exam? I'll probably go for CCSE first. | |
|
| I'm not sure. I'm betting it's not real easy. Luckily my work will pay for this one. I know that you do need 3 years experience (network security, auditing, etc.) to get certified even if you pass the test before that (5 yrs w/o college degree). It's not as technical as other tests but it won't hurt I think. I've also looked at CISSP and that looks like a monster! | |
|
| A security consultant should have a broad experience. (S)he should be competent on not only all the seven OSI layers but bussiness practices also. Aprox. 90% of all security vulnerabilities are non-technical. Dedicated security products like those from Check Point should definitly be on your knowledge list, but application knowledge is also important.
A young person would normally not have that experience, but could gain it in cooperation with others. Be part of a team with varied experience, and make sure you learn something every day.
Good luck!
Terje | |
|
| Thanks for the input. I agree that a InfoSec consultant should have broad knowlege. I'm pretty well covered on the business portion of the formula and now need to work on the 7 layers of the OSI model. What certs would be good to get to accompany my CISA? Luckily I'm learning on the job while gaining the tech experience. I've been told that and IS audit job is a good stepping stone because it allows you to see the majority of the Infosec areas of a company. Don't know if that is good advice or not? Could somebody please expand on the "application knowledge" that I should focus on. Appreciate the help. | |
| THELAIR 2001-07-31, 6:18 am |
| CISSP is the most well known of all the security certs out there. CISA would be a very very good cert to backup/follow it up with.
the Checkpoint certs are also good if your expected to be in a firewall role.
Don't forget the SANS certs as well.
Infact, if you want a list of every security cert out there, go to www.antionline.com and on the left hand side there is a link called Security Certs, check that out.
But as far as i can tell and from others, the CISSP is the defining cert for computer security.
(im a CISSP btw)
 | |
| aadami1 2001-08-25, 5:54 pm |
| To theLAIR,
[QUOTE]Originally posted by THELAIR
-----------------------------------
Infact, if you want a list of every security cert out there, go to www.antionline.com and on the left hand side there is a link called Security Certs, check that out.
------------------------------------------
I was not able to find the link with the security certs. Can you help me find them ?
Thanks | |
|
| Experience is the key!
Network Security is a major issue and is not cheap...
Don't want to put anyone down, but if not in the position at the job. It is very difficult to get training and money!
They all are great technecial skill certification, but without the real job. U cannot get enought training and it like fighting a SIU-30... | |
| dagger 2001-08-30, 7:31 pm |
| FYI:
If all is approved I was told that
the next major cert from CompTIA will be called Security+
It might be something to look into
once the beta is available | |
|
| That is a good suggestion "Security+"
Enjoy |
|
|
|