What next after CISSP?
So I've seen a few postings that recommend getting a CISM after passing the CISSP since they are both similar with regards to most content. My question is...is the CISM really noticable to HR and/or recruiters? Usually most postings I see state only CISSP or (CISSP or CISM). Would going for the second not have the same "payout"?
If you are looking for the greatest impact, the CISSP + CISA would provide better coverage than CISSP + CISM.
There is so much overlap between the two you may as well go for CISM. One extra string in your bow!
Same here. Since my employer pays for it (including the membership), I don't mind sitting for the exams.
As to what to do after I pass the CISSP, I'll probably pursue pentesting (e.g., eJPT, CEH???, OSCP).