dannycracko wrote: »
Is this true SSCP is more technical than CISSP? as per my understanding, SSCP (technical) and CISSP(Management).
kalkan999 wrote: »
Actually, I 90% agree with you on this post, B/eads. I look at a CISSP with suspicion ONLY when his/her CV does not match up. I dont waste my time humbling and humiliating people with the CISSP cert who don't warrant the title, mostly because I know that there are a lot of people like you who will. I simply look over the Resume' handed to me by random HR person and move along.
SSCP, to me, tells me that the person taking it sees that he/she is lacking in experience AND seems to know better than to spend $70K on a Ahemm...BACHELORS Degree program from ITT or Devry, where the credits don't transfer to other, more legitimate universities. SSCP should be taught at vocational schools, and vocational schools should make a comeback against For-profit universities. SSCP tells me a lot about a person, and a lot of it is positive.
My advice to anyone listening and wanting to venture into the Information Security world. Listen to B/eads, but look past his cynicism an derision. He and I, and others like us who are senior peeps, are stuck in a historical loop. Stuck in Active Directory enterprises, stuck in obsolete 'Defense-in-Depth' enterprise networks, and interviewing security people without the skills, or worse, with the skills, but without the knowledge or desire to bring about a paradigm shift in security.
These three things are going to be most prevalent in the next 5-10 years regarding security: Mobile Device Management, Cloud Security, and upgrading SOC's to support both. DLP, Content filtering, Next Gen Firewalls, all will be operated virtually, manned operations will migrate to SOCs, data centers, and Mobile Device support centers. New Data Governance models will rise from the ashes of the daily data breaches that are turning existing 'secure' networks into charred out tinder boxes.