Which SANS course to take?

markulousmarkulous Member Posts: 2,394 ■■■■■■■■□□
I passed my GCIH earlier this year and just passed the CISSP exam. I can budget for one next year. Debating between GCED, GMON, and GCIA. I want to keep getting stronger with blue team stuff. Which would would be a good next step?


  • cyberguyprcyberguypr Mod Posts: 6,927 Mod
    Right off the bat I would say do not do GCED. It has some content from GCIH and will not do much to strengthen you as a blue teamer. Are you talkign about just the exam or the corresponding class?
  • E Double UE Double U Member Posts: 2,202 ■■■■■■■■■■
    I know two people that have taken SEC511 and they were underwhelmed.

    SEC503 was useful for me because of my NIDS work.
    Alphabet soup from (ISC)2, ISACA, GIAC, EC-Council, Microsoft, ITIL, Cisco, Scrum, CompTIA, AWS
  • markulousmarkulous Member Posts: 2,394 ■■■■■■■■□□
    The class as well. I definitely want the full experience again along with Netwars. So GCIA or GMON may be better?
  • sb97sb97 Member Posts: 109
    If you do Intrusion Analysis (Or really any type of packet analysis) then GCIA is a heckuva good course
  • markulousmarkulous Member Posts: 2,394 ■■■■■■■■□□
    My coworker is taking the GMON, so maybe GCIA is a good balance to that. I do a little packet analysis, but I'm going to be doing more soon and I feel it's something I need to get stronger in.
  • temuchintemuchin Member Posts: 21 ■□□□□□□□□□
    i'd recommend gcia
  • DonTicoDonTico Registered Users Posts: 11 ■□□□□□□□□□
Sign In or Register to comment.