Full Disclosure mailing list archives
Re: Training & Certifications
From: "Robert Repp" <robertrepp () hotmail com>
Date: Fri, 02 Apr 2004 17:33:40 -0600
Harlan,What we're doing is porting customers from consultancy by one person to a new, larger business owned by that person as a growth move. We're "inheriting" three small (~150 seat) corporations and a handful of small (~5-25 seat) office businesses. Almost every customer has had some issue with either trojans, hacking attempts, or DoS. As we go through the sales process, we're being asked often about all of these.
As a salesman, I'd like to be able to point out a credible authority whose training informs our work. As a technician, I'm interested in making sure our team can get actually useful training. I agree that the right people and skillset is much more important than simply having the right certs on the lobby wall. Side question: Is there a reliable test you favor when interviewing new techs about network administration?
This list seemed like the place to ask about widely respected security authorities, since anything obviously fake or useless tends to be quickly engulfed in flames.
Thanks, Rob
From: Harlan Carvey <keydet89 () yahoo com> To: Exibar <exibar () thelair com>, Robert Repp <robertrepp () hotmail com> CC: full-disclosure () lists netsys com Subject: Re: [Full-disclosure] Training & Certifications Date: Fri, 2 Apr 2004 13:31:29 -0800 (PST) > Without the experience behind the cert, any and all > certs aren't even worth the paper they're printed on. This is true, and I couldn't agree more. However, the thing about certs is that they have to be measureable and repeatable...which, when one becomes popular, very quickly leads to bootcamps, etc. There a lot of folks w/ the necessary experience...but even that doesn't make a "qualified" security professional. > With that said, the most notable Security > cert would have to be CISSP. The CISSP may be useful for Robert's upper-level folks, but it's really more of a management level cert. For what Robert seems to want to do, I wouldn't think that any certs would be necessary...after all, are small businesses really going to want to pay the higher price for folks w/ high-level certs? Robert, saying you want to set up a security consultancy for small businesses, what kind of services do you plan to offer? Maybe that would help your decision regarding certifications. It might be advisable to look for folks w/ MCSEs, Red Hat cert...whatever os's you're going to support. Hope that helps a bit... Harlan
_________________________________________________________________Persistent heartburn? Check out Digestive Health & Wellness for information and advice. http://gerd.msn.com/default.asp
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Training & Certifications Robert Repp (Apr 02)
- Re: Training & Certifications Exibar (Apr 02)
- Re: Training & Certifications Harlan Carvey (Apr 02)
- RE: [inbox] Re: Training & Certifications Curt Purdy (Apr 04)
- Re: Training & Certifications Harlan Carvey (Apr 02)
- <Possible follow-ups>
- Re: Training & Certifications Robert Repp (Apr 02)
- Re: Training & Certifications Harlan Carvey (Apr 03)
- Re: Training & Certifications Dave Howe (Apr 03)
- Re: Training & Certifications Ron DuFresne (Apr 05)
- Re: [FD] Training & Certifications Andrew J Caines (Apr 05)
- Re: Training & Certifications Exibar (Apr 05)
- RE: Training & Certifications Laura Taylor (Apr 06)
- Re: Training & Certifications Exibar (Apr 06)
- Re: Training & Certifications Harlan Carvey (Apr 03)
- RE: Training & Certifications Bojan Zdrnja (Apr 05)
- Re: Training & Certifications Valdis . Kletnieks (Apr 05)
- RE: [inbox] Re: Training & Certifications Exibar (Apr 05)
- Re: Training & Certifications Exibar (Apr 02)