Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: CISSP

from [Nick Besant] Network Security [Permanent Link]
Subject: Re: CISSP
Date: Tue, 05 Dec 2006 10:44:57 +0000
I think it's a worthwhile qualification to have if only from the point of view of structured learning. Unless you've already done a CS or equivalent degree, it's unlikely that you'll have covered some of the architectural or formal methodologies, practices, standards etc that you must know to take the CISSP exam. On-the-job learning is an excellent (I'm biased) way to learn all things security but you only tend to learn the technologies etc around the environments you're working with.

I found the learning process, while covering some out-of-date material that I'm unlikely to use in future, did cover some additional areas which I've since applied to projects to my / my employer's benefit.

So; in summary, I would recommend it if you're looking for a broader certification/career path/etc focusing on security. The breadth (not really the depth) of the body of knowledge has provided me with a way to cement together everything I've learned through working on or personal research. YMMV :)


--
Nick Besant (lists@hwf.cc)



dfullerton@mantor.org wrote: 
Then I wonder if this certification should really have this kind of notoriety. 
Looks like it's not technical and if an 11 years old boy can complete this cert 
...it's not about security management experience either.

Anyone can give me some good reason to acquire CISSP while not being related to 
money and the wannabe marketing-made notoriety?

Personally I done GCIH and GHTQ, the latest is harder and really related to 
penetration testing. I would like some GOOD reason for someone in the security 
field for a while and having others, more in deep, technical certification to 
go on with CISSP.

Should we glorify such things? Tell me more about the exam, the topics are 
quite general and may not be totally in line with the exam and the real 
knowledge being certified.

Danny Fullerton
---------------
IT Security Specialist, GCIH GHTQ
http://www.mantor.org/~northox
Mantor Organization

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------



------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: CISSP, Michael Krzeszkowski
Next by Date:  Re: CISSP, Anders Thulin
Previous by Thread:  Re: CISSP, Joey Peloquin
Next by Thread:  RE: CISSP, Adam Morey
Indexes:  [Date] [Thread] [Top] [All Lists]