+ Reply to Thread
Results 1 to 7 of 7
  1. Junior Member Registered Member
    Join Date
    Dec 2015
    Posts
    1

    Certifications
    Comptia A+
    #1

    Default Certifications for a path in IT Security

    Currently I just finished studying for my A+ and passed it and now studying for my Net+ then Security+. I want to specialize in IT Security and wondering what certs would be right for this field.
    Reply With Quote Quote  

  2. SS
  3. Senior Member E Double U's Avatar
    Join Date
    Apr 2014
    Location
    The Netherlands
    Posts
    1,343

    Certifications
    CISSP, CISM, CISA, GPEN, GCIA, GCIH, C|EH, and more.
    #2
    If you (or your employer) can pay for SANS training then GIAC is a good way to go. Lots of people start with GSEC.
    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
    Reply With Quote Quote  

  4. Master Chief Whiteout's Avatar
    Join Date
    Sep 2011
    Location
    Seattle Area
    Posts
    239

    Certifications
    A+, Sec+, CCNA, C|EH, C|HFI, BS:IT, MS:IS
    #3
    I feel like I see this same post or something similar everyday. Not trying to be an ass, but did you try a search first? Maybe we need a flow chart for security certifications and sticky that thing.
    Reply With Quote Quote  

  5. Senior Member
    Join Date
    Oct 2013
    Location
    Denver, CO
    Posts
    2,346

    Certifications
    MS: Information Security, CISSP, GCIH, CEH, CHFI, Linux+, Project+, VCA6-DCV
    #4
    Here's one that I found that is useful. Infosec is a big field so kinda depends on what you want to do. This gives you a decent idea: Career Certification Path ~ GravitySec[dot]com
    Reply With Quote Quote  

  6. Senior Member
    Join Date
    May 2015
    Posts
    383

    Certifications
    CISSP, GMON, C|EH, MCSE, MCSE:Security, Sec+, ITIL
    #5
    It's rare for someone to start an IT career in security since it's really an advanced specialization of IT.

    Certs don't "get you there" either. Look at a cert as having an access card that gets you past the minimum-wage security guard in the lobby of the high-rise where you want to work. The cert helps you get past the gatekeeper who doesn't know you or what you can contribute. They just know if you have that access card they can let you go inside. But just going inside the building doesn't mean you have a job. It just helps to show that you should be considered for the job.

    Experience and work history trumps certs (also trumps degrees). The best thing about certs actually is they add some discipline and establish core knowledge for working in the field/specialty. The cert proves you've learned it to at least a certain level of depth or proficiency at one time. You at least comprehend the fundamental concepts.

    Typically, one starts in some entry-level role in desktop support or service desk, from there moves into systems or networking, then becomes a network security or systems security specialist of some sort (with significant knowledge of both systems and networking), then after 10 years or so of IT security experience, goes toward security management, architect, engineer, or risk/compliance roles. Some start as software engineers or web devs and become pentesters. Likewise some in the earlier stages of their IT careers gravitate toward pentesting, usually coders, the occasional network or systems guy. Forensics sort of has its own path, though forensics specialists tend to have worked in a SOC for a while and really geek over doing the investigative/port mortem stuff in the incident response cycle. Auditors and compliance folks are a bit different as well, usually some experience it IT but some are just very process and data-oriented people who enjoy doing policy and metrics oriented stuff. Risk analysis folk usually have a business education and usually were either security managers or auditors.

    The question is, what to you want to do within this range of security roles?
    Last edited by renacido; 12-11-2015 at 11:00 PM.
    Reply With Quote Quote  

  7. Senior Member 636-555-3226's Avatar
    Join Date
    Jul 2015
    Posts
    935

    Certifications
    Lots of security certifications, yet the more I learn, the further I have to go...
    #6
    Reply With Quote Quote  

  8. Senior Member
    Join Date
    Jul 2015
    Location
    Island on the other side of Pacific pond
    Posts
    1,005

    Certifications
    C****, C***, C**
    #7
    Quote Originally Posted by renacido View Post
    It's rare for someone to start an IT career in security since it's really an advanced specialization of IT.

    Typically, one starts in some entry-level role in desktop support or service desk, from there moves into systems or networking, then becomes a network security or systems security specialist of some sort (with significant knowledge of both systems and networking), then after 10 years or so of IT security experience, goes toward security management, architect, engineer, or risk/compliance roles.
    This is why infosec jobs are in such high demand, the industry is unable to find people with the relevant experience.

    Anyway, the 2 posts above plus
    Starting an InfoSec Career and Starting an InfoSec Career
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks