In defence - your rant applies to 'any' paper-based qualification. I know of
people with degrees who lack intelligence & common sense - on the otherhand
I know people with degrees who are truly intelligent. The same applies to IT
certificates.
Something should be said about employers who 'soley' rely on the paper to
prove someones ability. I know if someone walked in with an MCSE, I'd be
able to tell if they were a true MCSE within 30mins, the same for Cisco pros
and developers. The same situation applies to pro's without certs, some are
blaggers some are not.
No doubt, a seasoned CISSP or true infosec pro would identify someone who
claimed to be a pro when in fact didn't know much at all.
"It's a market differentiator for employers, whether the differences being
measured are valid or not."
Very true, the fact remains that in my mind a top professional with a CISSP
is more attractive than a top professional `without` a CISSP. And its what
the industry demands (rightly or wrongly)
________________________________
From: Bill Quire [mailto:quire2001@hotmail.com]
Sent: 15 November 2004 18:10
To: CISSP-Discuss@yahoogroups.com
Subject: [CISSP-D] re: Is CISSP useless?
------- Warning! Personal rant follows ----------
Subject: RE: [CISSP-D] Is achieveing CISSP cert useless.....
Sent: Sunday, November 14, 2004 9:33 PM
In most cases, a CISSP (or any other examined certification) says nothing
about the credentials or abilities of this holder, except that s/he can
retain enough knowledge to correctly answer a preponderance of the questions
during the narrow time-window of the exam. I know way too many CISSPs (and
other purported security certifications) who have a lot of book knowledge,
but no clue about real-time data security design, processes or procedures. A
lot is traditionally made of people who have a lot of letters after their
names, but probably only 1 in 5 have the real-time experience to support the
certification, including me. I can study up a storm and pass pretty much any
exam, even without performing much in my job that relates to the cert. The
credentials required for "on the job" responsibilities for CISSP and most
other certs are fairly vague and extraordinarily broad. so, unless you're
the janitor or work in the kitchen, your job description will have something
that will match the "criteria".
But, because the marketplace has blind faith in certification exams being a
valid measure of a person's ability to perform the tasks related to the
certification, I and everyone else will continue to get them. It's a market
differentiator for employers, whether the differences being measured are
valid or not.
Of course, this is just my opinion and it and $1.25 will still get you a cup
of tepid coffee in most greasy spoons in the US.
Regards,
Bill
------------------------ Yahoo! Groups Sponsor --------------------~-->
Make a clean sweep of pop-up ads. Yahoo! Companion Toolbar.
Now with Pop-Up Blocker. Get it for free!
http://us.click.yahoo.com/L5YrjA/eSIIAA/yQLSAA/kgFolB/TM
--------------------------------------------------------------------~->
Yahoo! Groups Links
<*> To visit your group on the web, go to:
http://groups.yahoo.com/group/CISSP-Discuss/
<*> To unsubscribe from this group, send an email to:
CISSP-Discuss-unsubscribe@yahoogroups.com
<*> Your use of Yahoo! Groups is subject to:
http://docs.yahoo.com/info/terms/
