Full Disclosure mailing list archives

Re: CISSP Test

From: <srenna () vdbmusic com>
Date: Tue, 22 Mar 2005 12:59:25 -0500

agreed on the devaluing of the GIACs. SANS is reallymaking a big mistake and angering 7000 SecurityProfessionals.

The three "crown jewels" as I see them are CISSP, SANSGIAC(with practical) and CISM/CISA.

Get any of those combined with solid experience and you'rein. A CISSP is basically becoming like the MCSE thesedays.


Scott Renna CISSP, GCIA, GCIH  <---Practical
Security Team Lead


On Tue, 22 Mar 2005 11:37:45 -0500
 adeel hussain <ad33lh () gmail com> wrote:

Hello Vladamir,
To answer your question, yes the CISSP is worth it.However it isonly worth it due to the publics misconception of whatis is.
The CISSP certification basically shows that you have abaseunderstanding of the primary concepts across what arewidely regardedas all the major areas if IT security knowledge (knownas the CommonBody of Knowledge or CBK). This is a good thing if youare, or aspire
to be, in a management position.
Unfortunately the common perception of the CISSP by mostnon-ITsecurity people (which includes HR staff) is thatsomeone who is aCISSP is capable and competent in all areas of ITsecurity. Add tothat the belief it is the best (or only) securitycertification theyare aware of and it becomes "the" security certificationin thier
eyes.
I have seen many job descriptions in my time and in thelast few yearsit is rare to find one that does not either require ordesire the
CISSP.
As for other certifications, the SANS certs are quitegood although, Ibelieve, they are about to get devalued by the removalof thepractical requirement. I would recommend getting theCISSP, maybe theGSEC (SANS security essentials cert) and then focusingon certs forproducts/systems within the area you will be working in.Butremember, the cert is just the starting point and theresume's foot inthe door. You need to study and get as much hands on asyou can to
actually learn your chosen trade.


Good Luck,

Adeel
_______________________________________________
Full-Disclosure - We believe in it.
Charter:http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Re: CISSP Test, (continued)
- - - Re: CISSP Test vulcanius (Mar 22)
    - Message not available
    - Re: CISSP Test vulcanius (Mar 22)
    - Re: CISSP Test vulcanius (Mar 22)
    - Re: CISSP Test Vladamir (Mar 22)
    - RE: CISSP Test Clement Dupuis (Mar 23)
    - RE: CISSP Test DAN MORRILL (Mar 23)
    - Re: CISSP Test Vladamir (Mar 23)
    - Re: CISSP Test David Chastain (Mar 22)
- Re: CISSP Test Daniel F. Chief Security Engineer - (Mar 22)
- RE: CISSP Test adeel hussain (Mar 22)
  - Re: CISSP Test srenna (Mar 22)
  - Re: CISSP Test Exibar (Mar 22)
- RE: CISSP Test Forbes, Robert R (Mar 22)
  - RE: CISSP Test David Chastain (Mar 22)
- RE: Re: CISSP Test Forbes, Robert R (Mar 22)
- RE: CISSP Test george jetson (Mar 22)
  - RE: CISSP Test Clement Dupuis (Mar 22)
- RE: CISSP Test Pete Herzog (Mar 23)
- Re: CISSP Test pretty vacant (Mar 25)