Penny Arcade Forums Help / Advice Forum
The new forums will be named Coin Return (based on the most recent vote)! You can check on the status and timeline of the transition to the new forums here.
The Guiding Principles and New Rules document is now in effect.

What security certification next?

wallakawallaka Registered User regular
edited January 2010 in Help / Advice Forum
OK, I just got my Security+ cert and I'm looking for more. I work as a network security analyst and want to find another job, and need more certs for better pay.

CISSP is out of the question for a while. Anybody know about the GIAC? CEH? How difficult is the MCSE Security specialization?

Basically, any advice on where to go next would be appreciated.

wallaka on

Posts

  • TaterskinTaterskin Registered User regular
    edited January 2010
    Why is CISSP out of the question? That's the big one that all of my co-workers work toward. Sorry I don't have more to add.

    Taterskin on
  • wallakawallaka Registered User regular
    edited January 2010
    I don't feel like putting forth quite that much effort and money just now, that's all.

    wallaka on
  • Evil_ReaverEvil_Reaver Registered User regular
    edited January 2010
    You want to be a bad ass? Get your CEH.

    Evil_Reaver on
    XBL: Agitated Wombat | 3DS: 2363-7048-2527
  • PirateJonPirateJon Registered User regular
    edited January 2010
    I work with some hardcore security professionals in Gov't and private sector, both in policy and technical (pen testers). I say that so you know I'm not guessing when I say CISSP or CSSP are the only worth-while certs for technical security professionals.

    CEH & GIAC are next to useless, I wouldn't get either unless your company was paying for it. MSFT stuff is only relevant if you're going to be a server jockey, and then only because it looks good on a resume.

    PirateJon on
    all perfectionists are mediocre in their own eyes
  • wallakawallaka Registered User regular
    edited January 2010
    Damn, I hate the CISSP though. So useless.

    You meen SSCP?

    wallaka on
  • PirateJonPirateJon Registered User regular
    edited January 2010
    Don't think of it as useless - its a huge door opener. Plus if you're mainly a server jockey it's good to learn about physical security and such.

    CSSP is the cisco security cert. It's as well respected as CISSP around here, but not nearly as popular in the job postings.
    http://www.cisco.com/web/learning/le3/le2/le37/le54/learning_certification_type_home.html

    PirateJon on
    all perfectionists are mediocre in their own eyes
  • wallakawallaka Registered User regular
    edited January 2010
    Hmm. I've been halfass thinking about a CCNA just for general principles, and you have to have it for the CCSP.

    I know that the CISSP is great for resume padding, but that's about all it's good for. There has to be some general getting kickbacks from (ISC)2.

    wallaka on
  • SkimblecatSkimblecat Victoria BCRegistered User regular
    edited January 2010
    I'm a CISSP, and it's pretty much an unofficial requirement here. If you don't want to get it or you don't have the 5 years experience required, what about a CISA or CISM?

    I am looking at a CIPP/C or /IT next, as my team works closely with our Privacy folks and I think info sec and privacy are an awesome combination.

    Skimblecat on
    Enforcer
    PAX Prime Security Team Lead
    PAX Dev Security Manager
  • wallakawallaka Registered User regular
    edited January 2010
    If I stay at this job I'll have to get a GIAC/GCIA sometime this year.

    CISA looks interesting. That one might be it...except WTF only two test dates a year?? Bullshit.

    wallaka on
Sign In or Register to comment.
Penny Arcade Forums Help / Advice Forum