+ Reply to Thread
Results 1 to 16 of 16
  1. Senior Member yoba222's Avatar
    Join Date
    Jun 2013
    Posts
    355

    Certifications
    GCIH, eJPT, CCNA R&S, CAPM, Sec+, Net+, A+
    #1

    Default Which of the Elite Three: CCIE, CISSP, or CEH?

    elitecerts.jpg
    Yes this thread is sarcasm. And no, I didn't write this ad. But it's not the first ad where I've seen statements like, "CEH required--GCIH/GPEN are merely nice extras." So which one of these three is the most elite to you?
    Reply With Quote Quote  

  2. SS -->
  3. Senior Member
    Join Date
    Nov 2011
    Posts
    810
    #2
    Quote Originally Posted by yoba222 View Post
    Attachment 8249
    Yes this thread is sarcasm. And no, I didn't write this ad. But it's not the first ad where I've seen statements like, "CEH required--GCIH/GPEN are merely nice extras." So which one of these three is the most elite to you?
    It sounds like a Government contractor role and they're writing it based on the 8570 list of certifications. Because it's an Infosec position, I don't see anything wrong with the listing.

    CISSP would be the default.
    Reply With Quote Quote  

  4. Senior Member
    Join Date
    Oct 2014
    Location
    San Francisco
    Posts
    143

    Certifications
    CCIE#14023 (R/S, Sec), JNCIE-SP #2332
    #3
    It's certainly amusing to see all of those put in the same category. The CCIE Security is a hands-on exam focused on the configuration of one vendor's equipment. It doesn't cover so many other things, like security policy. And as I've written more than once on my blog (link below), it's entirely possible the CCIE Security you are talking to passed the exam back in 2008, like I did, and is therefore an expert on the VPN 3000-series concentrator, NAC framework, PIX firewalls, and CiscoSecure ACS. Realllly useful stuff nowadays!

    As it is, it's just one data point in the overall evaluation of a given candidate. It's just amusing that they would lump certs that cover such highly disparate subject areas into one category.
    Reply With Quote Quote  

  5. They are watching you NetworkNewb's Avatar
    Join Date
    Feb 2015
    Location
    Off the grid
    Posts
    2,563

    Certifications
    A+/Net+/Sec+, CCENT, CCNA:Sec, CCSK, GCIH
    #4
    CEH... CCIE... close enough!
    Reply With Quote Quote  

  6. Senior Member
    Join Date
    Nov 2010
    Location
    Maryland
    Posts
    780

    Certifications
    A+, Net+, Sec+, CCNA, CCNP, CCDP, CISSP, CISM, CISA, CEH, MCSE 2003, MCTIP 2008, Bachelor of Science IT
    #5
    Whoever wrote that probably meant CCNA Security or the new CCNA Cyber Ops cert. They're 8570/8140 compliant.
    Last edited by ryanfahey; 03-03-2017 at 03:59 PM.
    Reply With Quote Quote  

  7. Woohoo! It's over 1000!
    Join Date
    Aug 2015
    Location
    Australia
    Posts
    1,680

    Certifications
    RHCSA, Linux+, ACSA, ACTC, ACSP, MCSA:7, MCTS, ITIL F, Prince2 Pract, AgilePM Practioner, VCP-DCV, Storage+, CCNA R+S, CCNA Sec, Security+, CEH, CASP
    #6
    The other odd thing in that listing is 3 references from the last 3 years. Which kind of suggests 3 different roles in the last 3 years, since normally they want references from your line manager ie someone who has actually worked with you closely. I guess you could have 3 references from the one employer, especially if it's project work.
    2017 Goals - MCSA 2008, CISSP, CCNP:R+S, Agile PM
    Reply With Quote Quote  

  8. Are we having fun yet? UnixGuy's Avatar
    Join Date
    Mar 2008
    Posts
    3,328

    Certifications
    GCFA, eJPT, RHCE, Solaris 10, SNIA SCSP, Security+, Server+, ITILv3, CCNA (Expired)
    #7
    Pick the cert with the word Hacker in it.
    Goal: GCFA (DONE), GPEN
    Reply With Quote Quote  

  9. Senior Member
    Join Date
    May 2013
    Posts
    1,123

    Certifications
    GWAPT, GSEC, Associate of (ISC)2, C|EH, CCNA:Security, CCNA:R&S, CCENT, Security+, Network+
    #8
    Quote Originally Posted by Remedymp View Post
    It sounds like a Government contractor role and they're writing it based on the 8570 list of certifications. Because it's an Infosec position, I don't see anything wrong with the listing.

    CISSP would be the default.
    Yep definitely geared towards 8570 and government. There might be something specific written into the contract so although you might see it as random, generally there is a reason behind it.
    Reply With Quote Quote  

  10. Member
    Join Date
    Nov 2016
    Posts
    52

    Certifications
    CISSP,MBA,CASP,CEH,ITIL v3 found
    #9
    IAM, ISSO work ...

    CISSP must have DoD will take CASP but CISSP I the one you want. Get CEH for a check in the box this way you can work wit incident handers etc..

    within the DoD CEH is somewhat of a joke... but the certification meets a current market need.
    Reply With Quote Quote  

  11. Completely Clueless TechGromit's Avatar
    Join Date
    Oct 2015
    Location
    Galloway, NJ
    Posts
    1,283

    Certifications
    A+, Network +, GSEC, GCIH, Lunatic+
    #10
    Quote Originally Posted by spiderjericho View Post
    Whoever wrote that probably meant CCNA Security or the new CCNA Cyber Ops cert. They're 8570/8140 compliant.
    No, they meant what the wrote. Unfortunately when HR writes ads, they are a day late and a dollar short. They usually have no clue when writing requirements, I've applied for job postings that had nothing to do with the actual job. One job listing mentioned Datacard printers and when I told the interviewer I had experience working with them, he told me yea we don't have any of those. WTF?

    And what the hell is a IAM certification?

    With a little research I learned the "Infosec assessment methodology (IAM) certification" appears specific to the NSA, I can't imagine too many people outside of government / government contracting have one.
    Last edited by TechGromit; 01-10-2017 at 01:38 AM.
    Still searching for the corner in a round room.
    Reply With Quote Quote  

  12. 518
    518 is offline
    Senior Member
    Join Date
    Mar 2011
    Location
    Somewhere in Germany
    Posts
    150

    Certifications
    CISSP|CCNP|CASP|CCNA|CCNA-Sec|CCNA-Voice|Sec+|Net+|A+
    #11
    its a poorly written ad. For one, IAM in the DOD means Information Assurance Manage/ment/r..not InfoSec Assessment Methodology...lol. This ad has got to be a joke.

    CASP are for the ones who are not responsible for the IA posture of a DoD network. CASP or SEC+ are for the ISSM/O of a contractor's network e.g. P2P, Isolated WAN, Isolated LAN.

    CISSP, on the other hand, are for the folks who are responsible for the IA posture (compliance C&A or A&A package) of a DOD theater or enclave.

    CEH is mainly for folks who we call CND (Computer Network Defense) that uses security scanners like Nessus (ACAS).
    Reply With Quote Quote  

  13. 518
    518 is offline
    Senior Member
    Join Date
    Mar 2011
    Location
    Somewhere in Germany
    Posts
    150

    Certifications
    CISSP|CCNP|CASP|CCNA|CCNA-Sec|CCNA-Voice|Sec+|Net+|A+
    #12
    Quote Originally Posted by TechGromit View Post
    No, they meant what the wrote. Unfortunately when HR writes ads, they are a day late and a dollar short. They usually have no clue when writing requirements, I've applied for job postings that had nothing to do with the actual job. One job listing mentioned Datacard printers and when I told the interviewer I had experience working with them, he told me yea we don't have any of those. WTF?

    And what the hell is a IAM certification?

    With a little research I learned the "Infosec assessment methodology (IAM) certification" appears specific to the NSA, I can't imagine too many people outside of government / government contracting have one.
    There are two categories in the DoD, IAM AND IAT. They are not certifications per say. Rather, they are used to determine what cert you need ased on your role. Network, Systems Admin, Help Desk, and ADPE Tech belongs to IAT. They are only required a Sec+ and an OS Baseline cert like Cisco or Microsoft (depending on your role).
    Reply With Quote Quote  

  14. Senior Member
    Join Date
    May 2013
    Posts
    1,123

    Certifications
    GWAPT, GSEC, Associate of (ISC)2, C|EH, CCNA:Security, CCNA:R&S, CCENT, Security+, Network+
    #13
    Quote Originally Posted by 518 View Post
    There are two categories in the DoD, IAM AND IAT. They are not certifications per say. Rather, they are used to determine what cert you need ased on your role. Network, Systems Admin, Help Desk, and ADPE Tech belongs to IAT. They are only required a Sec+ and an OS Baseline cert like Cisco or Microsoft (depending on your role).
    Not in this case for IAM. See https://www.blackhat.com/html/bh-usa...8-nsa-iam.html for a little information...there is actually a certification.
    Reply With Quote Quote  

  15. Completely Clueless TechGromit's Avatar
    Join Date
    Oct 2015
    Location
    Galloway, NJ
    Posts
    1,283

    Certifications
    A+, Network +, GSEC, GCIH, Lunatic+
    #14
    Quote Originally Posted by 518 View Post
    There are two categories in the DoD, IAM AND IAT. They are not certifications per say.
    Yea I notice that too, but "Infosec assessment methodology (IAM) certification" is a actual certification as well.
    Still searching for the corner in a round room.
    Reply With Quote Quote  

  16. 518
    518 is offline
    Senior Member
    Join Date
    Mar 2011
    Location
    Somewhere in Germany
    Posts
    150

    Certifications
    CISSP|CCNP|CASP|CCNA|CCNA-Sec|CCNA-Voice|Sec+|Net+|A+
    #15
    Quote Originally Posted by TechGuru80 View Post
    Not in this case for IAM. See https://www.blackhat.com/html/bh-usa...8-nsa-iam.html for a little information...there is actually a certification.
    An article that dates back 2008. Theres even a reference of that InfoSec Assessment Methodology back in the 90s. Never heard of it before, only certification we look for DoD is under 8570/8140.
    Reply With Quote Quote  

  17. 518
    518 is offline
    Senior Member
    Join Date
    Mar 2011
    Location
    Somewhere in Germany
    Posts
    150

    Certifications
    CISSP|CCNP|CASP|CCNA|CCNA-Sec|CCNA-Voice|Sec+|Net+|A+
    #16
    The more I read about it, the more obsolete it gets. DoD and/or SAP are using RMF based on NIST 800 for A&A now. (DSS/RMF or JSIG/RMF)
    Last edited by 518; 01-11-2017 at 02:17 AM.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks