Secure Coding mailing list archives

Previous By Date Next
Previous By Thread Next

Announcing LAMN: Legion Against Meaningless certificatioNs

From: list-spam at secureconsulting.net (Benjamin Tomhave)
Date: Sat, 21 Mar 2009 08:51:09 -0400
fwiw, I've interviewed my fair share of CISSPs who didn't have a basic
understanding of infosec... with the boot camps these days, people don't
"learn" anything... they cram for 1-2 wks, shoving everything into
short-term rote memory, and then they take the test and promptly forget
everything... this is especially true since the feds began mandating
CISSPs for contractors... at least here in the DC metro, the pool of
candidates has become extremely watered down over the last 5 or so years...

Joe Teff wrote:

I notice certs like CISSP when hiring. It says the person has a basic
understanding of all IS security areas. Nothing more. If someone can't
pass the CISSP then I have to wonder why.

    -----Original Message-----
    From: Paco Hope <Paco at cigital.com>
    To: "SC-L at securecoding.org" <SC-L at securecoding.org>
    Date: Thu, 19 Mar 2009 11:36:45 -0400
    Subject: Re: [SC-L] Announcing LAMN: Legion Against Meaningless
    certificatioNs

    On 3/18/09 5:29 PM, "Jeremy Epstein" <jeremy.j.epstein at gmail.com> wrote:

    > If you don't have a CISSP, CISM, MCSE, or EIEIO - and you're proud
    of it

    ...then I'd say you have an overly simplistic view of the world.

    Anyone who believes that a credential automatically conveys some magical
    knowledge that you didn't have before is just as overly-simplistic as
    someone who disparages all credentials equally. It just isn't a
    black and
    white world.

    Paco
    -- 
    Paco Hope, CISSP, CSSLP
    Technical Manager, Cigital, Inc
    http://www.cigital.com/ ? +1.703.585.7868
    Software Confidence. Achieved.


    _______________________________________________
    Secure Coding mailing list (SC-L) SC-L at securecoding.org
    List information, subscriptions, etc -
    http://krvw.com/mailman/listinfo/sc-l
    List charter available at - http://www.securecoding.org/list/charter.php
    SC-L is hosted and moderated by KRvW Associates, LLC
    (http://www.KRvW.com)
    as a free, non-commercial service to the software security community.
    _______________________________________________


------------------------------------------------------------------------

_______________________________________________
Secure Coding mailing list (SC-L) SC-L at securecoding.org
List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l
List charter available at - http://www.securecoding.org/list/charter.php
SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com)
as a free, non-commercial service to the software security community.
_______________________________________________


-- 
Benjamin Tomhave, MS, CISSP
falcon at secureconsulting.net
LI: http://www.linkedin.com/in/btomhave
Blog: http://www.secureconsulting.net/
Photos: http://photos.secureconsulting.net/
Web: http://falcon.secureconsulting.net/

[ Random Quote: ]
"I think there should be something in science called the 'reindeer
effect.' I don't know what it would be, but I think it'd be good to hear
someone say, 'Gentlemen, what we have here is a terrifying example of
the reindeer effect.'"
Deep Thoughts by Jack Handy
Previous By Date Next
Previous By Thread Next

Current thread: