Security+/CSA+/CASP before CISSP
I'm trying to make my transition more towards the security side, with a focus on Cyber Defense. I'm in the beginning stages of studying for CISSP, but was wondering if there is a benefit to going the CompTia route first? I know CISSP is the better ROI option for the resume/HR. My question is geared more towards the content of those three Comptia exams, as far as learning skills necessary for the job.
Ideally, I'd do SANS/GIAC over both of the above, just not sure I'd want to pay out of pocket for their courses, without having a pure security job first.
Ideally, I'd do SANS/GIAC over both of the above, just not sure I'd want to pay out of pocket for their courses, without having a pure security job first.
Comments
Not saying the knowledge is bad in those after you get the CISSP, but not sure if you would see much ROI in taking and getting the actual certs themselves.
Would either of you feel it be beneficial to go through the material of those exams prior to studying for CISSP, even if I never sit a Comptia exam, or would you say do that afterwards?
I would never get the CISSP and then go back to Comptia certs. It would have to be the other way around
Connect With Me || My Blog Site || Follow Me
I'll follow the advice here though and just go for the big gun
CSA+ (Or CASP) > CISSP > GIAC/CCIE Security
Not so sure after reading this thread though haha
Choose the path that works best for you.
For me, money isn't a concern, so likely my next security cert will be CASP, although I have the experience for CISSP. The reason? Studying for CASP will be helping me eventually prep for CISSP, and get me CEUs for CSA+. While I agree that CISSP probably is a better ROI, I also think any IT Security pro that shows a continual learning process - and certs help with that - is going to be a stronger IT pro.
You make an excellent point. There are things covered in each of the certifications that are not covered or have a different emphasis in the other certifications. Pursuing, or at least reading the various certification books/watching videos, the other certs might flesh a few things out that may be encountered during the course of ones career.
Connect With Me || My Blog Site || Follow Me
The way I look at it is your time would probably be better spent focusing on specific aspects of security that you want to work in/with, instead of getting a bunch of "general" security certifications that won't hold much value. I'd rather start focusing on how deep I can get into the specific security technologies I work on.
How much value would having the CSA+ or CASP be on a resume when someone has their CISSP? It might matter a little to some (like working for the DoD?), but I would doubt it would matter at all to most. Can't say that is fact, but just my view on it.