+ Reply to Thread
Results 1 to 14 of 14
  1. Junior Member
    Join Date
    Oct 2012
    Posts
    25
    #1

    Default Certs for SOC Analyst (and beyond - other security jobs)

    I would like to work as a SOC Analyst. I'm finding jobs in at area at the moment. Applied for some SOC Analyst jobs, and no luck so far. Some jobs does say they want a certs, and some don't. I'm applying for the ones that don't need a cert, as I don't have one.

    Besides a Security+ cert, I might consider the EC-Council cert 'Incident Handler'. I've seen the content on the EC-Council website for ECIH and it matches to stuff that a SOC Analyst would do. EC-Council does state that experience is needed before taking the test for the cert, and if not, do the official training. I don't hold any Security certs at the moment.

    ECIH hasn't got much mentioning on the forum or anywhere else. I don't mind if it's less recognised or anything like that, as long as it's a security cert, that's fine. Certs created have their purpose. I believe all certs no matter what it is, has it's place in the industry and proves your knowledge, etc...

    Was thinking doing EC-Council's ECSS (Security Specialist) too.

    Any entry level certs that doesn't need renewing?

    Company probably can't afford GIAC/SANS certification courses.

    In the future, and if there are vacancies (either within the company or outside of it), I would like move from a SOC Analyst and into Penetration Testing or e-discovery/digital forensics. Obviously, certs for that kind of jobs are CEH and CHFI (for example). Won't be doing CEH or CHFI anytime soon.

    Would like to pursue SSCP or CISSP in the future too.

    Are my security cert choices in the near and far future good choices?
    Last edited by joba19; 09-18-2017 at 03:11 PM.
    Reply With Quote Quote  

  2. SS -->
  3. They are watching you NetworkNewb's Avatar
    Join Date
    Feb 2015
    Location
    Off the grid
    Posts
    2,560

    Certifications
    A+/Net+/Sec+, CCENT, CCNA:Sec, CCSK, GCIH
    #2
    Quote Originally Posted by joba19 View Post
    Some jobs does say they want a certs, and some don't. I'm applying for the ones that don't need a cert, as I don't have one.
    I would just focus on the certs that companies are asking for. Other ones not listed probably hold much weight when it comes down to getting the job you're looking for and would be a waste of time and money. Better off focusing on the skills/knowledge they are looking for.

    And just because a cert is a "Security" cert does not mean it would be helpful. Gotta think it from a manager's viewpoint looking at your resume. If they see a certification they have never heard of, they probably aren't going to take the time and look it up, figure out what it covers, and how much studying is needed for it. They are just going to read over it and not pay any attention to it. Focus on the certs people are asking for and focus on the knowledge they are asking for.

    I'm not saying the "not well known" certs aren't going to give you some useful knowledge. I'm saying paying any amount to take the test will be almost be a waste. Also, the you would be better off focusing your time to learn knowledge specific to the tasks the job you are looking to get does.
    Reply With Quote Quote  

  4. Senior Member
    Join Date
    Mar 2011
    Location
    Chicago
    Posts
    1,281

    Certifications
    CISSP-ISSAP, HCISPP GPEN, GSEC, GSNA, GCIH, E|CH, ECSA, Security+
    #3
    Take a look at what hiring managers are looking for here on Indeed.com: https://www.indeed.com/q-Soc-Analyst-jobs.html

    Likewise the generic Wiki article: https://en.wikipedia.org/wiki/Inform...rations_center

    Looking at the general responsibilities and requirements is the best place to start. See some mention of C|EH, none of the other EC offerings. Some GIAC and certainly the CISSP (5 years of security experience to sit for the exam.), a smattering of other exams as well. Most positions are aimed at a four year degree in CS, MIS/MT or security.

    I have meet a number of people who have recently gotten Master's degrees in security and start in the SOC as well. This is more common than you might think.

    Good luck!

    b/eads
    Reply With Quote Quote  

  5. Senior Member E Double U's Avatar
    Join Date
    Apr 2014
    Location
    The Netherlands
    Posts
    1,145

    Certifications
    CISSP, CISM, GCIA, GCIH, C|EH, and more.
    #4
    What type of background do you have? Knowing that would help me with making recommendations. I would say start with Security+, but that isn't absolutely necessary. My path was Cisco -> (ISC)2 -> GIAC.

    I have not seen any job listings that requested any EC-Council offering other than C|EH. I'm a big fan of SANS training, but affordability can be an issue.
    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
    Reply With Quote Quote  

  6. Senior Member yoba222's Avatar
    Join Date
    Jun 2013
    Posts
    355

    Certifications
    GCIH, eJPT, CCNA R&S, CAPM, Sec+, Net+, A+
    #5
    Quote Originally Posted by joba19 View Post
    . . . Certs created have their purpose. . .
    In my opinion EC Council is the McDonald's of security cert companies. I could probably find an obscure item on a McDonald's menu and read the description out loud in a way that might make it sound appetizing. EC Council's website is like a McDonald's menu and people flock to it.

    Like what the others said, just get whatever certs companies are asking for, being mindful of the fast food choices.
    Working on: Linux Foundation Certified System Administrator (LFCS) exam scheduled October 20
    Reply With Quote Quote  

  7. Junior Member
    Join Date
    Oct 2012
    Posts
    25
    #6
    Thanks for the advice guys.

    By the way, my background is in IT Operations as a Computer Operator. I do have an IT degree too, but no security topics taught in it though.
    Reply With Quote Quote  

  8. Senior Member
    Join Date
    Sep 2016
    Location
    VA
    Posts
    383

    Certifications
    CISSP, PMP, CCNP, FITSP-M
    #7
    A lot also depends on your location. You don't say where you're from, some certifications that are valued in the U.S. aren't so much in Europe or Asia.
    2017: CCNP (done), FITSI-M (done) CCIE Written
    2018: CCIE R/S
    2019: VCP (DCV/NV), OSCP
    2020-1: MBA
    Reply With Quote Quote  

  9. Junior Member
    Join Date
    Oct 2012
    Posts
    25
    #8
    Quote Originally Posted by EANx View Post
    A lot also depends on your location. You don't say where you're from, some certifications that are valued in the U.S. aren't so much in Europe or Asia.
    I'm based in Europe.
    Reply With Quote Quote  

  10. Junior Member
    Join Date
    Oct 2012
    Posts
    25
    #9
    In the country I live in (not US), some SOC jobs ask for CISSP and/or CEH. I can understand they might ask for CISSP, but CEH not sure why.

    Some other job ad, asks for GIAC/SANS certs. Haven't seen one asking for Security+.
    Reply With Quote Quote  

  11. Junior Member
    Join Date
    Apr 2015
    Posts
    8

    Certifications
    Prince2, CSX-F, eJPT, GMON
    #10
    As all SOC are working with SIEM techno, would make sense to be certified on the techno you're working with.
    I'm currently working on alienvault cert (ACSE).
    Reply With Quote Quote  

  12. Senior Member mikey88's Avatar
    Join Date
    Jul 2017
    Location
    Seattle, WA
    Posts
    125

    Certifications
    Security+, Network+, Server+
    #11
    CompTIA CSA+ and CCNA Cyber Ops are probably the only certs are were designed for SOC/Analyst type roles. There are some from GIAC/EC-Council but they are out of the price range for most.
    2017 Goals: Security+ [] Server+ []
    2018 Goals: CCNA Cyber Ops, Security[ ] CISSP [ ]
    Reply With Quote Quote  

  13. Certification Invigilator Forum Admin JDMurray's Avatar
    Join Date
    Jul 2003
    Location
    Surf City USA
    Posts
    10,596
    Blog Entries
    50

    Certifications
    GSEC, EnCE, CISSP, SSCP, CEH (ANSI), CASP, CCNA, CCENT, CWSP, CWNA, CWTS, Security+, Server+, Network+, A+, DHTI+, PDI+, MSIT InfoSec
    #12
    I work in SecOps (SOC and IDR) and CASP is the closest exam that I've taken to SecOps work. I'm wanting to give CSA+ and CCNA CyberOps a try to see how they measure up, but I need to get a couple of Amazon AWS certs out of the way first.
    Moderator of the InfoSec, CWNP, IT Jobs, Virtualization, Java, and Microsoft Developers forums at www.techexams.net
    --
    Blog: www.techexams.net/blogs/jdmurray
    LinkedIn: www.linkedin.com/in/jamesdmurray
    Twitter: www.twitter.com/jdmurray
    Reply With Quote Quote  

  14. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    168

    Certifications
    CISSP, CEH, CCNA Security, CCNA R&S, VCP5-DCV, VCP-Cloud, MCSA 2012, MCSA 2008, MCSA 2003, Security +, Net+, A+
    #13
    CISSP or SANS. Everything else is uncivilized.
    Reply With Quote Quote  

  15. Are we having fun yet? UnixGuy's Avatar
    Join Date
    Mar 2008
    Posts
    3,327

    Certifications
    GCFA, eJPT, RHCE, Solaris 10, SNIA SCSP, Security+, Server+, ITILv3, CCNA (Expired)
    #14
    Quote Originally Posted by Blucodex View Post
    CISSP or SANS. Everything else is uncivilized.


    I see your point, those certs to have the most recognition...but other certs have value in the knowledge you gain. When you gain knowledge and apply it on the job you get to prove yourself and offer value. But true, for the purpose of getting hired etc you are absolutely right.
    Goal: GCFA (DONE), GPEN
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks