+ Reply to Thread
Results 1 to 14 of 14
  1. Junior Member
    Join Date
    May 2017
    Posts
    21

    Certifications
    CISSP
    #1

    Default Current most valuable certifications going into penetration testing in the US

    Hello I'm currently UK based but am likely to relocate to the US next year. I was wondering whether anyone had a view on what the most sought after penetration testing related certifications were currently?

    From what I've seen OSCP and CEH seem to both get a lot of attention although they appear to be quite different in terms of practicality?
    Reply With Quote Quote  

  2. SS -->
  3. They are watching you NetworkNewb's Avatar
    Join Date
    Feb 2015
    Location
    Off the grid
    Posts
    2,555

    Certifications
    A+/Net+/Sec+, CCENT, CCNA:Sec, CCSK, GCIH
    #2
    Talked to a manager of a pentesting company one time and he said the only he cares about is the OSCP. Zero interest in the others.
    Reply With Quote Quote  

  4. Junior Member
    Join Date
    May 2017
    Posts
    21

    Certifications
    CISSP
    #3
    Thanks. I guess the other option is the SANS offerings.

    Oops - just realised I started this in the wrong section - mods please feel free to relocate!
    Reply With Quote Quote  

  5. Senior Member shochan's Avatar
    Join Date
    Sep 2016
    Location
    AR
    Posts
    404

    Certifications
    A+, Network+, i-Net+, Server+, Security+, MCP 70-210, Novell CNA 5.0
    #4
    2017 -> Cloud+ beta (Oct), Linux+ 103 (Dec)
    2018 ->Linux+ 104, CCNA CyberOps (July Cohort)
    Reply With Quote Quote  

  6. Senior Member cyberguypr's Avatar
    Join Date
    May 2007
    Location
    Chicago, IL
    Posts
    5,768

    Certifications
    GCFE, GCED, GCIH, CISSP, CCSP, and others that should never be mentioned
    #5
    CSA definitely does not fall under "most sought after penetration testing related certifications". Heck, it's so new that it doesn't fall under mot sought for anything.
    Reply With Quote Quote  

  7. Darth Lord of the Sith ITSpectre's Avatar
    Join Date
    May 2016
    Location
    The Normandy/ DMV
    Posts
    965

    Certifications
    Sec+, MTA, MCP
    #6
    Honestly I was going to do eJPT.... But based on the threads that I have seen... im going to use the eJPT study materials and YOLO the OSCP....
    In the darkest hour, there is always a way out - Eve ME3
    “The measure of an individual can be difficult to discern by actions alone.” – Thane Krios
    Reply With Quote Quote  

  8. Junior Member
    Join Date
    Oct 2015
    Location
    Sydney, Australia
    Posts
    14

    Certifications
    CISSP, CEH v9, CISA, CISM, Security+, Network+, MCP, ITIL
    #7
    Go for OSCP.
    I have CEH and it has very little practical value. It is probably handy for a risk manager or similar, who wants to have a high-level understanding of pen testing.

    Similar to what NetworkNewb said, if you can obtain OSCP without work experience you are looking good in the eyes of hiring managers - whether it gets you past HR / recruitment agents is another matter.
    Reply With Quote Quote  

  9. Senior Member 636-555-3226's Avatar
    Join Date
    Jul 2015
    Posts
    862

    Certifications
    Lots of security certifications, yet the more I learn, the further I have to go...
    #8
    OSCP is best for real world skills. CEH is good for generic resume padding & for people who don't know much about infosec (like HR), but otherwise CEH is rubbish. GPEN is good if you're just learning the ropes but is hella expensive
    Reply With Quote Quote  

  10. Darth Lord of the Sith ITSpectre's Avatar
    Join Date
    May 2016
    Location
    The Normandy/ DMV
    Posts
    965

    Certifications
    Sec+, MTA, MCP
    #9
    Quote Originally Posted by mattf73 View Post
    Go for OSCP.
    I have CEH and it has very little practical value. It is probably handy for a risk manager or similar, who wants to have a high-level understanding of pen testing.

    Similar to what NetworkNewb said, if you can obtain OSCP without work experience you are looking good in the eyes of hiring managers - whether it gets you past HR / recruitment agents is another matter.
    ^^^^THIS.....

    I thought about the eJPT.... BUT I enjoy a challenge. So I say im just going to go for the OSCP.... its harder, and I can go slow and learn the material.
    CEH is really a waste unless your trying to satisfy DoD requirements or to get your resume past HR filters
    In the darkest hour, there is always a way out - Eve ME3
    “The measure of an individual can be difficult to discern by actions alone.” – Thane Krios
    Reply With Quote Quote  

  11. Junior Member
    Join Date
    May 2017
    Posts
    21

    Certifications
    CISSP
    #10
    Thanks all - OSCP certainly seems a great hands-on option although looks pretty intense! I was wondering if there might be anything which would be a good stepping stone to use to build up to OSCP - any thoughts?
    Reply With Quote Quote  

  12. Darth Lord of the Sith ITSpectre's Avatar
    Join Date
    May 2016
    Location
    The Normandy/ DMV
    Posts
    965

    Certifications
    Sec+, MTA, MCP
    #11
    Quote Originally Posted by laurieH View Post
    Thanks all - OSCP certainly seems a great hands-on option although looks pretty intense! I was wondering if there might be anything which would be a good stepping stone to use to build up to OSCP - any thoughts?
    the eJPT certification is a good stepping stone. the forums have a link for a free barebones eJPT course here:

    eLearnSecurity PTS v3 - Free course voucher

    That is the link for the free course. The link still works. That will give you a foundation to build on. also search the forum for OSCP and eJPT threads.... it really helped me out a lot.
    In the darkest hour, there is always a way out - Eve ME3
    “The measure of an individual can be difficult to discern by actions alone.” – Thane Krios
    Reply With Quote Quote  

  13. Junior Member
    Join Date
    May 2017
    Posts
    21

    Certifications
    CISSP
    #12
    Quote Originally Posted by ITSpectre View Post
    the eJPT certification is a good stepping stone. the forums have a link for a free barebones eJPT course here:

    eLearnSecurity PTS v3 - Free course voucher

    That is the link for the free course. The link still works. That will give you a foundation to build on. also search the forum for OSCP and eJPT threads.... it really helped me out a lot.
    Thanks will have a look!
    Reply With Quote Quote  

  14. Member
    Join Date
    Jan 2017
    Posts
    96
    #13
    Im working toward the OSCP, but i also heard that the eJPT is a really good stepping stone.
    Reply With Quote Quote  

  15. Junior Member
    Join Date
    Aug 2017
    Location
    ancient alien moon-base of Jupiter
    Posts
    29

    Certifications
    CCNA 200-125, A+
    #14
    Where can a fresh rookie start?

    I'm studying for my CCNA security but after that I'm wondering where to go.

    OSCP seems like the best practical cert and one very suited towards work


    can a rookie get into OSCP or should I slow down and get something below that?

    any advice?
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks