Security Basics mailing list archives

Re: Certification Advice

From: "Meritt James" <meritt_james () bah com>
Date: Mon, 22 Sep 2003 09:21:57 -0400

I swapped a bit of email with him, but for those on the Management run
my current findings indicate CISM and, if you already are a CISSP, the
CISSMP.

Jim

Spyro Malaspinas wrote:


Very dissapointing to see that we are not abreast of the barometers that
measure many of the skill sets we look for in security professionals.  I
recently completed my CISSP, yes it is still valid.  It is also very highly
regarded.. take a look for CISSP on monster or dice and you will see what I
mean.

Second, it is good because it is non vendor specific.  Others that are good
are the SANS GIAC.  These are no joke as they require papers to be
completed.  They are more time intensive, and again NOT vendor specific.

I am not opposed to vendor certs yet they serve you in a limited fashion, ie
for those devices only.  Eg. I have maintained a CCSA, CCSE, and CCSE+ which
are all checkpoint exams.  A CSPFA, a cisco pix exam.  These are great to
have for measurement of a skill set with a particular device.  GIAC, and the
CISSP ensure that you are able to transfer your security knowledge as
principles, and can thus practice skillfully on a wide variety of devices no
matter who the vendor is.

Spyro Malaspinas, CISSP

----- Original Message -----
From: "m0use" <m0use () helixsecurity net>
To: "Oscar Kooijman" <oscar.kooijman () chello nl>
Cc: "'Neil Fryer'" <nfryer () marimba com>; "'Security Basics (E-mail)'"
<security-basics () securityfocus com>
Sent: Friday, September 19, 2003 4:14 PM
Subject: RE: Certification Advice

On Fri, 2003-09-19 at 05:41, Oscar Kooijman wrote:

CISSP certification is a good one to have in the security scene.


Also the SANS GSEC and other SANS certs Security+ and Cisco CCSP. HIPPA if

you are in healthcare, GLB if you are in financials.  CISSP is more
management oriented, SANS is more technical, CCSP carries the Cisco slant
and HIPPA and GLB are industry specialized.  Security+ I will reserve
comment. See COMPTIA's page for details.



--------------------------------------------------------------------------

--------------------------------------------------------------------------

--


---------------------------------------------------------------------------
----------------------------------------------------------------------------


-- 
James W. Meritt CISSP, CISA
Booz | Allen | Hamilton
phone: (410) 684-6566

---------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

Certification Advice Neil Fryer (Sep 18)
- RE: Certification Advice Oscar Kooijman (Sep 19)
  - RE: Certification Advice m0use (Sep 19)
    - RE: Certification Advice David Gillett (Sep 19)
    - RE: Certification Advice m0use (Sep 19)
    - RE: Certification Advice Adam Drake (Sep 22)
    - Re: Certification Advice Spyro Malaspinas (Sep 19)
    - Re: Certification Advice Meritt James (Sep 22)
- Re: Certification Advice Meritt James (Sep 19)
- <Possible follow-ups>
- RE: Certification Advice Hagen, Eric (Sep 19)
  - RE: Certification Advice Jimi Thompson (Sep 22)
- RE: Certification Advice Eugene Tawiah (Sep 19)
  - RE: Certification Advice Preston Newton (Sep 19)
    - RE: Certification Advice m0use (Sep 19)
    - RE: Certification Advice secureot (Sep 19)
  - RE: Certification Advice secureot (Sep 19)
- RE: Certification Advice Brian Austin (Sep 19)
- RE: Certification Advice Martin, James E. (Sep 19)

(Thread continues...)