Cissp Experience Requirements

Hey Folks! im considering to go for the cissp but i have a doubt about my experience that do i have a relevant experience or not!

i have 5 years of experience in below mention Technologies do u think they are consider as a infosec experience for cissp and i they are what domain it is.

* Administration of Symantec Endpoint Protection
* Administration of TMG Server
* Administration of Symantec Backup Exec Server and disaster recovery plans
* Administration of Cisco Switches, routers and ASA (5510)
* Administration of Active Directory Server

Find more posts tagged with

Comments

Nabsh07

Yes you do have experience in operations security, incident response, BCP.

jt2929

Without seeing your actual resume, I would say no, you do not meet the experience requirement.

beads

Send it to the ISC(2) and let them make the determination. From what has been posted on this board and what I know from real life no one has been, reasonably, denied. Meaning that I don't think the ISC(2) puts much thought into the vetting process.

The question is do you have five years of security experience not the products used during that time. We cannot vet your experience without a resume so your likely to get a wide variety of responses. Most people without much experience tell me they "just make something up", take the exam and have the ISC(2) do the validation.

Breathe easy.

- b/eads

dhay13

I emailed ISC2 to ask about my experience and got a generic answer...here is the copy/paste of their response

We do not require proof of work experience prior to sitting for the exam. Once your registration is complete and payment has been submitted on the Pearson VUE site, the next step is to sit for your exam. Once you obtain a passing score, you may then submit your endorsement documentation to programs@isc2.org. If at that time you do not have the required work experience for your certification, you may choose to become an Associate of (ISC)2 until you obtain the required experience.
Should you have additional questions, please feel free to contact me.

mnashe

It seems like you would. I hope you would as we both have very similar experience.

Administration of Active Directory - If you are creating user accounts and assigning permissions to resources, that seems (at least to me) to satisfy the Identity and Access Management domain

Administration of Cisco routers, switches, ASA - This should satisfy the Communication and Network security domain

I'll let someone else correct me if I'm wrong.

TechGuru80

Shouldn't even really be a question...you only have to have 5 years total between at least two domains...or 4 plus degree or specific certifications. You shouldn't have any issues.

dhay13

i have a B.S. and Security+ so should only need 4 years. i have about 3.5 years actively managing AD, users and groups, permissions, etx., and another 8 years or so managing firewalls, and general system hardening. in addition to that i have about 1.5 years of vulnerability scanning and remediation. that is what i sent to ISC2 and they gave the generic response posted above. i don't think i will have any issue but i wanted to get it directly from them.

TechGuru80

Even if you didn't get accepted...you would have 6 years to get the experience. Seems pretty cut and dry based on what you have said you have done.