Crazy idea - honest opinions please

in SSCP
Hi all,
As the proud holder of CISSP (recently endorsed) and SSCP, and over 15 years of IT and InfoSec experience, I'm at the point in life where I don't know what to do. Do I progress from InfoSec analyst into security management? Or perhaps continue down the technical route? Maybe GRC is the right path? I really have no idea which path to follow. I'm approaching 40, so perhaps this is the start of my mid-life crisis.
A lifelong dream for me is to write a book. I'm under no illusions; I'm not JK Rowling. Having said that, years of experience of writing technical guides and **** sheets for users has made it clear to me that I can write for people when I put my mind to it.
With the sad passing of Shon Harris, I see an opening in the market for a fresh view on the CISSP Study Guide. Sure, there's a few others out there, but none of them covered everything you need to know the way Shon's books did.
What do you think? Does the community need a new CISSP study guide? Or is there another InfoSec exam/speciality that you feel lacks representation in the market? Has anyone else here seriously considered doing something similar?
Thanks!
Jon
As the proud holder of CISSP (recently endorsed) and SSCP, and over 15 years of IT and InfoSec experience, I'm at the point in life where I don't know what to do. Do I progress from InfoSec analyst into security management? Or perhaps continue down the technical route? Maybe GRC is the right path? I really have no idea which path to follow. I'm approaching 40, so perhaps this is the start of my mid-life crisis.
A lifelong dream for me is to write a book. I'm under no illusions; I'm not JK Rowling. Having said that, years of experience of writing technical guides and **** sheets for users has made it clear to me that I can write for people when I put my mind to it.
With the sad passing of Shon Harris, I see an opening in the market for a fresh view on the CISSP Study Guide. Sure, there's a few others out there, but none of them covered everything you need to know the way Shon's books did.
What do you think? Does the community need a new CISSP study guide? Or is there another InfoSec exam/speciality that you feel lacks representation in the market? Has anyone else here seriously considered doing something similar?
Thanks!
Jon
Comments
Become CCNA, CISSP, CEH, VCP5-10 Certified
Possible Start Masters in Information Security
This is very likely, but you should always give your crazy ideas a try
P.S. People usually regret taking my advice
2022 goal(s): CRISC, maybe CGEIT or TOGAF
"You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
Get Your CISSP At All Costs - Don't Listen To Beads
2022 goal(s): CRISC, maybe CGEIT or TOGAF
"You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
"As the proud holder of CISSP (recently endorsed) and SSCP, and over 15 years of IT and InfoSec experience, I'm at the point in life where I don't know what to do. Do I progress from InfoSec analyst into security management? Or perhaps continue down the technical route? Maybe GRC is the right path? I really have no idea which path to follow. I'm approaching 40, so perhaps this is the start of my mid-life crisis."
The gentleman has stated he's been endorsed. How dense are you? Wait! I get it.
We may disagree on opinions or even beliefs, that's fine but lets try to keep the protracted insults to a minimum - shall we? I think we can agree to disagree on another thread and keep it there.
(*Off to the store to stock up on CISSP llort biscuits*)
See you under the bridge.
@jonwinterburn;
Not a crazy idea. Start with a blog and write a peer reviewed white paper. SANS reading room has plenty of material to peruse as well. If you have something really interesting I'd suggest a presentation at a conference. You want to see how your message is received? Presenting at a conference will tell you how much stomach you really have for rejection or adulation, cause your peers are going to tell you to your face.
Congratulations on the SSCP an CISSP, by the way.
While I won't give the subject away, it does have a lot to do with where CISSP, CISM, CISA, and the plethora of SANS courses fit in as History lessons, how they fit presently, and how they can help one further down the road via continuing education paths as well as my 'take' on InfoSec and the future.
Kalkan
of detail in there.
There are lots of publishing options, you can either go the traditional route with contacting a real publisher or even just self-publish through a number of services.
I'll buy it!!
Tranquilo, I was cracking a joke on kalkan which is why I quoted him lol. Don't take yourself too seriously
2022 goal(s): CRISC, maybe CGEIT or TOGAF
"You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
I should get you in touch with my Inbox on this board. Seems your the only one with a sense of humor.
So I made a start on building the framework for the book. Today I had a look on Amazon to see if there's anything similar out there - there wasn't last time I looked (about a year ago). Alas, 3 days ago I was beaten to it! There's a dummies guide just out: http://www.amazon.co.uk/Getting-Information-Security-Job-Dummies/dp/1119002818/
Damn! Should I bother trying to compete with such a big brand? The only difference between my idea and this Dummies guide, is that I was planning on making the book free on Kindle and all open ePub formats. I figure it's a chance to give back to the community, gives me a ton of CPEs and also gets my name out there.
What do you think? Worth pursuing?
Thanks!
Jon
Your blog readers are involved with you writing it and its a proven fact that people like what they help create.
Connect with me on LinkedIn @ https://www.linkedin.com/in/phillipzito
I did consider doing a blog. But everyone is blogging these days and driving readers to your blog is no mean feat.
Edit: I misunderstood your suggestion. A blog book, rather than a blog sounds like a good idea. Thanks!