Options

CISSP vs OSCP

HiggsxHiggsx Member Posts: 72 ■■□□□□□□□□
in General Certification
Hello all.
I'm a junior cyber security specialist in CERT and my employer wants to pay for CISSP certificate and gives me about 120 days. But I don't have experience in such field and I think at this stage the best for me is to take OSCP training course than CISSP.

What do you advice me guys? should I take CISSP? :)
· Share on FacebookShare on Twitter

Comments

  • Options
    cyberguyprcyberguypr Mod Posts: 6,928 Mod
    Did you discuss this with your employer? Also, do you have the experience required to obtain the CISSP?
    · Share on FacebookShare on Twitter
  • Options
    chrisonechrisone Member Posts: 2,278 ■■■■■■■■■□
    So what IS your experience?
    Certs: CISSP, EnCE, OSCP, CRTP, eCTHPv2, eCPPT, eCIR, LFCS, CEH, SPLK-1002, SC-200, SC-300, AZ-900, AZ-500, VHL:Advanced+
    2023 Cert Goals: SC-100, eCPTX
    · Share on FacebookShare on Twitter
  • Options
    HiggsxHiggsx Member Posts: 72 ■■□□□□□□□□
    No I didn't discuss this with my employer yet. They choose to buy CISSP and as far as I know CISSP requires 5 years of experience and I have just two month experience in such field :)

    Also I think at this stage I need technical trainings(OSCP) than theoritical such as CISSP.
    · Share on FacebookShare on Twitter
  • Options
    MrAgentMrAgent Member Posts: 1,310 ■■■■■■■■□□
    The OSCP and CISSP are two completely different certifications.
    You can still take the CISSP exam, though if you pass you'll have the title of associate, and not the full title.
    · Share on FacebookShare on Twitter
  • Options
    chrisonechrisone Member Posts: 2,278 ■■■■■■■■■□
    Show your employer the necessary requirements that is needed for the CISSP. Perhaps they are unaware? If after they see the requirements and they still want you to go for it , then just appreciate the fact that they are doing this for you and take advantage that in 2016 you will be CISSP certified. Once you pass CISSP then use that as an excuse in order to get training for OSCP. Show them that what you studied in CISSP points heavily towards learning the technical side of pentesting and how it is needed during security risk assessment (start using CISSP terms here ;) ).
    Certs: CISSP, EnCE, OSCP, CRTP, eCTHPv2, eCPPT, eCIR, LFCS, CEH, SPLK-1002, SC-200, SC-300, AZ-900, AZ-500, VHL:Advanced+
    2023 Cert Goals: SC-100, eCPTX
    · Share on FacebookShare on Twitter
  • Options
    VonnVonn Member Posts: 14 ■□□□□□□□□□
    I did the OSCP a few months ago and recently just passed the CISSP just today, if your employer will pay for the CISSP sure why not take it even though you might not get the full certification. I personally believe I learned more in the OSCP course you just have to make sure you have the time to invest in it as it will take a minimum 3-4 months and many long nights.
    · Share on FacebookShare on Twitter
  • Options
    TechGuru80TechGuru80 Member Posts: 1,539 ■■■■■■□□□□
    What is the rationale behind the CISSP? Besides it being an important certification for management.

    Also, with that little experience I don't think you will be able to pass the OSCP.
    Security Certification Roadmap
    · Share on FacebookShare on Twitter
  • Options
    HiggsxHiggsx Member Posts: 72 ■■□□□□□□□□
    Thanks all.
    I now think it is better to prepare for CISSP and then buy OSCP by my own salary.
    · Share on FacebookShare on Twitter
Sign In or Register to comment.