+ Reply to Thread
Results 1 to 14 of 14
  1. Member dizzy_kitty's Avatar
    Join Date
    Jun 2016
    Location
    US
    Posts
    87

    Certifications
    Security+, CEH, PMP, ACP, CCNA, CTFL, Cloud+
    #1

    Default If you could pick a SANS course to take which one would you pick?

    It's been a quiet day at work so I've been listening to the CSA+ videos on Udemy and taking notes in between working on different tasks. My boss has been really supportive of my eagerness to develop my security skills. Today she stopped by and handed me a SANS Pen Test 2018 pamphlet and mentioned I may be interested in their training. I am incredibly, absolutely over the moon at her suggestion. I'm going to take a good look at what courses are available and what aligns to my goals but I'm curious...

    If your company paid for a SANS 4-6 day course which one would you take? Why? Would you recommend a different organization to take a similar course with? I'm familiar with SANS reputation. I just have a lot of questions swirling around in my mind right now.
    Reply With Quote Quote  

  2. SS
  3. They are watching you NetworkNewb's Avatar
    Join Date
    Feb 2015
    Location
    Off the grid
    Posts
    2,824

    Certifications
    A+/Net+/Sec+, CCENT, CCNA:Sec, CCSK, GCIH
    #2
    SEC555 or SEC511 as I think they would help me in my current position and could give me ideas where my company has areas to improve on.

    But SEC503 and SEC505 looks interesting to me as personal choices as they would be more technical and think they would be more fun.
    Reply With Quote Quote  

  4. Senior Member
    Join Date
    Sep 2016
    Location
    VA
    Posts
    634

    Certifications
    CISSP, PMP, CCNP, FITSP-M
    #3
    I'd suspect the answer will entirely depend on the experience of the answeree. Personally, I'd skip some of the easier courses (401, etc.) and get that info from other sources if you needed, and take something a little more advanced. My preference would be 560.
    2018: CCIE Written (R/S) (done - Jan), CCIE R/S
    After that: MBA, OSCP
    Reply With Quote Quote  

  5. California Kid JoJoCal19's Avatar
    Join Date
    Mar 2009
    Location
    Jacksonville, FL
    Posts
    2,524

    Certifications
    CISSP, CISM, CISA, CRISC, GCIA, GSEC, AWS CCP, CEHv8, CHFIv8, ITIL-F, MSISA, BSBA
    #4
    SEC504 would be a great all around course. Then SEC560 would be next.
    Have: CISSP, CISM, CISA, CRISC, GCIA, GSEC, AWS CCP, CEHv8, CHFIv8, ITIL-F, BSBA - UF, MSISA - WGU
    Currently Working On: MS Cybersecurity, AWS Certified Security - Specialty, Learning Linux & Python
    Next Up:​ AWS Certified Solutions Architect - Associate
    Reading:​ A Cloud Guru, Code Academy
    Reply With Quote Quote  

  6. Are we having fun yet? UnixGuy's Avatar
    Join Date
    Mar 2008
    Posts
    3,480

    Certifications
    GPEN, GCFA, eJPT, RHCE, Solaris 10, SNIA SCSP, Security+, Server+, ITILv3, CCNA (Expired)
    #5
    a bit more on the advanced side, but I strongly recommend SANS FOR 508

    you will learn a lot about incident response, memory forensics, etc...stuff that are hard to learn elsewhere

    I took three SANS courses before, and this stands out the most to me. For pentesting there are other training options other than SANS that have better money/value....GCIH is a bit too basic and you can read a book that has most of the topics...

    What are your career goals?
    Goal: GCFA (DONE), GPEN (DONE)

    "Never stop learning and every time you are doing something mindless...you could be learning something new." Eric Conrad
    Reply With Quote Quote  

  7. Senior Member
    Join Date
    Jan 2015
    Location
    Chicago, IL
    Posts
    1,050

    Certifications
    Too many MCPs and MCTS, MCSA: Security, MCSE: Security, MCSA: 2003, 2008, 2012, MCITP: EA, CISSP-ISSAP, SCS DLP, GREM
    #6
    FOR610 for a second time. In-depth if possible. Not really interested in any other offerings.
    Reply With Quote Quote  

  8. Senior Member cyberguypr's Avatar
    Join Date
    May 2007
    Location
    Chicago, IL
    Posts
    6,043

    Certifications
    GCFE, GCED, GCIH, CISSP, CCSP, and others that should never be mentioned
    #7
    OP, you need to decide where you are at, where you want to go, and how the company will benefit from your training. It really doesn't matter what we would do because we are not exactly where you are. If you want to start by telling us more about your current role and what interests you we can provide some recommendations.
    Reply With Quote Quote  

  9. Senior Member E Double U's Avatar
    Join Date
    Apr 2014
    Location
    The Netherlands
    Posts
    1,273

    Certifications
    CISSP, CISM, GCIA, GCIH, C|EH, and more.
    #8
    I would take whichever course is relevant to my job or whatever my manager strongly suggests.

    When I was introduced to SANS I wanted to take SEC401, but the CISO strongly recommended SEC504 so I went in that direction. In my current role I decided to take SEC503 because we took over the NIDS plus I was interested in packet analysis after a few incidents. Now I'm leaning towards SEC560 after a redteam exercise we had earlier in the year.

    SANS has so many offerings that I find interesting, but I do not have the time or money to take them all so I just focus on what's relevant to me at the moment.
    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
    Reply With Quote Quote  

  10. Senior Member
    Join Date
    Mar 2017
    Location
    Phoenix, AZ
    Posts
    318

    Certifications
    CISSP, C|EH, C|HFI, MCSA 2012, MCSA 2008, Security +, Net+, A+
    #9
    I've been recommended 511 for my current role of SOC Analyst.
    Reply With Quote Quote  

  11. Member dizzy_kitty's Avatar
    Join Date
    Jun 2016
    Location
    US
    Posts
    87

    Certifications
    Security+, CEH, PMP, ACP, CCNA, CTFL, Cloud+
    #10
    Quote Originally Posted by cyberguypr View Post
    OP, you need to decide where you are at, where you want to go, and how the company will benefit from your training. It really doesn't matter what we would do because we are not exactly where you are. If you want to start by telling us more about your current role and what interests you we can provide some recommendations.
    I wasn't exactly looking for advice. This post was just out of mere curiosity and it was great to read what other users experienced or liked/disliked. I'm still going through the list of courses and thinking of which one I want to take.
    Reply With Quote Quote  

  12. Member
    Join Date
    Dec 2011
    Posts
    65

    Certifications
    Project+, A+ CE, Net+ CE, Sec+ CE, C|EH, CCENT
    #11
    I would break it down by what you actually want to do in the security field. There's certs for the offensive side (pen testing) or there's certs for the defensive side of the house. You can take every cert in the world but if you don't have a specific goal in mind, career wise, then it's a moot point.
    Reply With Quote Quote  

  13. Senior Member
    Join Date
    Oct 2017
    Location
    Asia
    Posts
    132

    Certifications
    CASP, CRISC, CISA, CISM (application pending)
    #12
    SEC560 for me as I've always wanted to do pen testing.
    Reply With Quote Quote  

  14. Senior Member
    Join Date
    Mar 2014
    Posts
    646

    Certifications
    Alphabet-soup
    #13
    SEC617 or SEC660 for me. 660 is where I'm at work wise, and having a single course to consolidate everything, refresh, and add some new techniques (ROP, DEP/ASLR bypass) would be nice.
    617 has no comparable wireless course offered anywhere else that I can find, and as I move more in to IoT, ICS, and less common protocols, the more I find in the wireless spectrum. Being able to quickly identify what's producing what is nice. Being able to work with that data more effectively would be a time saver. WiFi isn't an issue. BT aggravates me which means I need to learn more. For other protocols I can break out the hackRF and fumble through capturing data and replaying it, maybe modifying things, but I want to learn more.
    Last edited by BlackBeret; 12-22-2017 at 02:52 PM.
    Reply With Quote Quote  

  15. Senior Member
    Join Date
    Dec 2015
    Location
    Quebec, Canada
    Posts
    461

    Certifications
    A+, Network+, Linux+, HP APS, VCP 3-4-5-6, VSP,VTSP, SSCP, Veeam VMCE, CISSP
    #14
    I would do them all, I love to be in training.... I have some change in my life coming soon in 2018, with that change, I expect to be able to afford 1 SANS course/year.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks