+ Reply to Thread
Results 1 to 11 of 11
  1. Junior Member Registered Member
    Join Date
    Nov 2015
    Posts
    3
    #1

    Default General questions about CISSP

    Hi everyone,
    I have a background as software/test and network engineer with a Gap in my career going to teaching. I'm trying to go back to the field and I need to update my learning. I'm thinking to go into the security engineer field with taking CISSP certificate and I have few questions before I invest time and money in it.
    1- I understand the networking layers and basic TCP/IP LAN/WAN configurations and I am a quick learner, but can I pass the certificate without the need to take other certificate/s before it?
    2- I have no experience in security, would companies ask for that? and if I pass the CISSP will it be enough for the employer to consider my resume?
    3- I need to fill in some paper work for an informational interview for a 2 technical IT preferably who have the certificate and are working, it's a 20-30 mins questionnaire that asks about their daily routine at work and what they need to be successuful at their jobs, etc.

    I'm new to the forum and I hope I can find some answers.
    Thank you for your time.
    Reply With Quote Quote  

  2. SS
  3. Senior Member
    Join Date
    May 2013
    Posts
    1,473

    Certifications
    CISSP, CISA, GWAPT, GSEC
    #2
    How long was your gap? There is only a certain timeframe that you can claim previous experience towards the CISSP (5 years or 4 years and an applicable degree/certification).

    1. You must understand it from a security perspective (attacks, malicious use, etc.). The OSI model is one part in an otherwise very large common body of knowledge. You are probably better off starting with Security+ (or network security certifications, such as Cisco) and see where you stand. Not to mention you haven't worked in security so although you have technical knowledge, security involves analyzing bad guys (many of whom are operational employees).

    2. Passing the CISSP without experience is worthless. Especially since things change fast in technology, your previous experience could be out of date. Do not assume you will be able to walk into a Mid to High level position.

    3. I have no clue what you are asking...passing the CISSP without experience is worthless.
    Reply With Quote Quote  

  4. Senior Member Cyberscum's Avatar
    Join Date
    Oct 2014
    Location
    25.0000° N, 71.0000° W
    Posts
    744

    Certifications
    Certified Coccyx Inspector
    #3
    Quote Originally Posted by TechGuru80 View Post
    How long was your gap?
    Getting kinda personal here.
    Reply With Quote Quote  

  5. Senior Member
    Join Date
    Oct 2013
    Location
    Denver, CO
    Posts
    2,346

    Certifications
    MS: Information Security, CISSP, GCIH, CEH, CHFI, Linux+, Project+, VCA6-DCV
    #4
    Don't you have to have two years experience in security to qualify for the CISSP?
    Reply With Quote Quote  

  6. Senior Member
    Join Date
    Apr 2013
    Posts
    2,074
    #5
    Quote Originally Posted by markulous View Post
    Don't you have to have two years experience in security to qualify for the CISSP?
    5, or 4 with a related degree. It's in one of the domains though, so a security function, not exactly a 100% security job. Either way, no security experience and an unknown work gap + a CISSP isn't really a great combo.

    2- I have no experience in security, would companies ask for that? and if I pass the CISSP will it be enough for the employer to consider my resume?
    Yes, they'll want experience, especially for an engineer level position. Consider your resume is relative, if you have experience in the tasks they need, even similar ones, they might consider that.
    Reply With Quote Quote  

  7. Senior Member
    Join Date
    Oct 2013
    Location
    Denver, CO
    Posts
    2,346

    Certifications
    MS: Information Security, CISSP, GCIH, CEH, CHFI, Linux+, Project+, VCA6-DCV
    #6
    Oh so you can just use 4 years of general IT experience (with a degree) and just tailor it enough to qualify?
    Reply With Quote Quote  

  8. Senior Member
    Join Date
    Apr 2013
    Posts
    2,074
    #7
    Assuming your general IT experience falls under the 8 domains for the CISSP, from what I understand, yes.
    Reply With Quote Quote  

  9. Junior Member Registered Member
    Join Date
    Nov 2015
    Posts
    3
    #8
    I'm trying to take with "new Horizons" (not sure if I can say the name), they'll teach it for one weak with an instructor and then you prepare on your own for 5-6 weeks and pass the exam when you're ready. I have more than 4 years of experience as QA engineer where only 2.5 years are in networking more in the development and scripting side of that. The school told me with your experience you should be able to go into the class without any certificate before. but with all your inputs it looks like I can't?
    Reply With Quote Quote  

  10. Junior Member Registered Member
    Join Date
    Nov 2015
    Posts
    3
    #9
    (*week for earlier typo) Also if CISSP is not the right certificate for me , which one can be beneficial to put me in the field of security engineer rather than QA engineer? I'm not looking for advancd level, an entry to mid level is my goal now.
    Reply With Quote Quote  

  11. Senior Member alias454's Avatar
    Join Date
    Sep 2014
    Posts
    626

    Certifications
    BSIT, A+, eJPT, GSEC, VCP5-DCV
    #10
    I found this the other day and thought it had some good information about different sec focused certs https://danielmiessler.com/essays/infoseccerts/.
    “I do not seek answers, but rather to understand the question.”
    Reply With Quote Quote  

  12. Senior Member
    Join Date
    Jul 2015
    Location
    Island on the other side of Pacific pond
    Posts
    1,005

    Certifications
    C****, C***, C**
    #11
    Quote Originally Posted by hellotech View Post
    Hi everyone,
    I have a background as software/test and network engineer with a Gap in my career going to teaching. I'm trying to go back to the field and I need to update my learning. I'm thinking to go into the security engineer field with taking CISSP certificate and I have few questions before I invest time and money in it.
    Will you be able to get a certification using existing network knowledge? Say a CCENT or CCNA?

    Security today is very extensive and covers a lot of areas. You may want to start with CompTIA's Security+ as it gives you a foundation knowledge, all you need to do is pass the exam. Depending on your background, this may be as short as a few days intense study with the right textbook. Check the CompTIA Security+ forum for good study materials.

    CISSP is more for those with some experience; it can take weeks and months to prepare for it. After passing, there is still the endorsement/audit process before they award the CISSP title.

    Since you are fairly new, you may want to check Starting an InfoSec Career (1-3) and Starting an InfoSec Career (4-5).
    Last edited by Mike7; 11-16-2015 at 12:10 AM.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks