In my opinion, it all starts with TCP/IP. From here, it depends on what
aspect of security you want to be involved in. If you want to be vendor
specific, then get to know their products.
the CISSP is more a security management certification. With just a CISSP,
one will not know how to control a virus outbreak on a network. Please don't
misunderstand me. I am a CISSP, and in no way am I knocking it.
I come across way to many ambitious graduates wanting to get into security,
but they don't even know how to work out what a 28 bit subnet is !!
I've done the SANS GCIA course and one still needs to know TCP/IP fairly
well before attending the course.
So, a good place to start is know the transport hackers will use to get into
your network - TCP/IP, social engineering , etc.
My two cents worth
Jude
----- Original Message -----
From: "Sarbjit Singh Gill" <ssgill@gilltechnologies.com>
To: <security-basics@securityfocus.com>
Sent: Wednesday, August 18, 2004 5:29 PM
Subject: What do you folks think about EC-Council
I recently had the opportunity to sit into a presentation from the
Technical
Director of EC-Council. I somehow did not hear EC-Council being mentioned
in security-focus forums when there is a question about what certification
should one be doing when making a move into the security field.
So what is the response about EC-Council. Is the CEH (Certified Ethical
Hacker) a good place to start compared to SANS, Security+ or even CISSP.
Thanks
Gill
--------------------------------------------------------------------------
-
Computer Forensics Training at the InfoSec Institute. All of our class
sizes
are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills
of
a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.
http://www.securityfocus.com/sponsor/InfoSecInstitute_security-basics_040817
--------------------------------------------------------------------------
--
---------------------------------------------------------------------------
Computer Forensics Training at the InfoSec Institute. All of our class sizes
are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills of
a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.
http://www.securityfocus.com/sponsor/InfoSecInstitute_security-basics_040817
----------------------------------------------------------------------------
