successrealm wrote: » Really depends on your previous exp. What have you done in the past that could help you in a mgmt role? Do you like auditing? Have you done any that could warrant getting CISA? Will ITIL really set you up for MGMT? (In other countries, it seems to benefit better than here in the US in some aspects) COBIT could be a good step in governance. Perhaps the CISM is your best bet? (the future seems to be pointing to governance, compliance, security auditing, policies, et cetera.) It all depends on what you have done, so a little more background on yourself, and what you like to do (tech or mgmt) would help us.
Mentality wrote: » I don't think I will be taking any more "managerial" exams like CISSP, one is enough. I know I can't be an engineer my whole life, but management isn't my thing. Instead of ending up a manager I prefer something more like "consultant" or "architect". I think I'll go all the way with the technical exams, I have cleared CEHv7 years ago, same for CCNA Security, Cisco Cyber Security Specialist and the 3 levels of the CIW Web Security track. My upcoming roadmap will be: Security+, ECSA, CCNP Security. GIAC.ORG has got some very interesting certs as well, and I believe they are equally difficult to CISSP, except they are technical. However, their exams cost $1000 each, so I will give it lots of thought before ever attempting one of those.
