Re: security cert

["crawford charles" <biv0uac17 () hotmail com>]

Has GIAC changed?  As I remember, the firewall exam required
knowledge of Cisco IOS CLI -- that is, your answers had to
be written explicitly in terms of Cisco ACLs, etc, and
correct syntax was an exam criterion.  This does not qualify
as "vendor neutral" to my mind.  Granted, it helps to speak
the language of the industry gorilla, but it's a poor
evaluation method for general concepts.

C.


From: MeaCulpa [mailto:meaculpa () punkass com]
Sent: Saturday, April 12, 2003 2:13 PM
To: 'Paris Stone'; 'Ravi K'; security-basics () securityfocus com
Subject: RE: security cert


>Hello-
>I was wondering if there are any security certifications
that are not
>specific to any product/s. One that tests the general
understanding of
>the security concepts in general. Most of the certifications I have
>heard of are more IT oriented. Any specifically for telecom??

For the general concepts four certifications come to my mind:

CISSP / SSCP (by isc(2))
TICSA (by trusecure)
Security+ (Comptia)
CIW Security pro (by CIW)

For in-depth technical certifications GIAC would be good.

Of the mentioned certifications I think highly of GIAC given the
practicals they have to make. It just gives that little edge over an MPC
exam. CISSP is lotsa theory and only MPC exam. However, they cover an
enormous amount of material, so it could be pretty ok. After I get two
GIAC certifications I will attend the CISSP exam as well...

Mea



_________________________________________________________________



-------------------------------------------------------------------
Is SPAM over-loading your e-mail server, disk space or bandwidth?
SurfControl E-Mail Filter is flexible, intelligent and policy-driven
protection.
http://www.securityfocus.com/SurfControl-security-basics2
Download your free fully functional trial, complete with 30-days of free technical support.
Stop SPAM before it stops you.
-------------------------------------------------------------------