New to Security Certifications

mirror51mirror51 Posts: 81Member ■■■□□□□□□□
hi guys,

First of all i will give you my background.
I have total 11 years experience in IT Industry.

4-5 years web development experience in php / python / java / LAMP /mysql / postgres/
4 yeas expereince in Devops Enginner Linux AWS etc
1-2 years experience in Networking

Current Certifications

CCNA, CCNP, CCNA Security, AWS Certified Solution Architect, AWS Certified Security Specialist

As a part of current job and i am now on 100% on securty like Pen testing application , hardening Linux system and AWS Security.
I started as Devops Enginner and we did had any secuirty person , so we hired junior devops and my manager want me to focus 100% on security.

My Plan is to do OSCP OSCE and OSEE .

I have never done any pen testing , dont know much assembly and exploit writing but i do have knowledge about programming , linux system administraion , network administration, MS Active Directory etc . Full AWS Knowledge , Bigdata, Python expert, bash expert, I am electronics engineer so have some idea about hardware microprocessors as well but almost forgot that stuff .

How much time it will take for each cert ?

Comments

  • tedjamestedjames Scruffy-looking nerfherdr Posts: 1,064Member ■■■■■■■□□□
    mirror51 wrote: »

    My Plan is to do OSCP OSCE and OSEE .

    How much time it will take for each cert ?

    How much time do you have? Seriously, if you've never done any penetration testing, I wouldn't start with OSCP. It's a great goal to shoot for, but that's like saying you want to go to college and start with the PHd. Start with eLearnSecurity's Junior Penetration Tester. Depending on your experience, you may be able to knock that out in a few weeks. Some have taken months to earn this. It just depends on your experience level and time.
  • johndoeejohndoee Posts: 152Member ■■■□□□□□□□
    mirror51 wrote: »
    hi guys,

    First of all i will give you my background.
    I have total 11 years experience in IT Industry.

    4-5 years web development experience in php / python / java / LAMP /mysql / postgres/
    4 yeas expereince in Devops Enginner Linux AWS etc
    1-2 years experience in Networking

    Current Certifications

    CCNA, CCNP, CCNA Security, AWS Certified Solution Architect, AWS Certified Security Specialist

    As a part of current job and i am now on 100% on securty like Pen testing application , hardening Linux system and AWS Security.
    I started as Devops Enginner and we did had any secuirty person , so we hired junior devops and my manager want me to focus 100% on security.

    My Plan is to do OSCP OSCE and OSEE .

    I have never done any pen testing , dont know much assembly and exploit writing but i do have knowledge about programming , linux system administraion , network administration, MS Active Directory etc . Full AWS Knowledge , Bigdata, Python expert, bash expert, I am electronics engineer so have some idea about hardware microprocessors as well but almost forgot that stuff .

    How much time it will take for each cert ?

    With time dedication, heart, passion, and an overwhelming amount of desire anything is possible.

    Some people on this forum said that coding is required, some have said it helps, and some have said it wasn't necessary to tackle the OSCP.

    Someone on this forum I am quite sure said they was previously an accountant and passed the OSCP. Not everyone had a penetration testing background before tackling the OSCP. In my honest opinion.. IT IS ONLY A FEW HUNDRED DOLLARS. If you can financially afford to possibly lose a few hundred dollars why not tackle it..I hope you don't and pass the first time but at least it;s not like you are spending 6-7k on SANS training.

    Long story short, go for it! You have some of the experience that others have stated helped them be successful.
  • yoba222yoba222 Posts: 1,068Member ■■■■■■■■□□
    Please don't take this the wrong way, but if you're serious about getting into pentesting, I'd look at buffing up your English and grammar skills. Everyone loves to focus on the technical side of pentesting, but at the end of the day the deliverable is a 50-100 page report that needs to be perfectly written. The only thing the client sees as a result of however many thousands of dollars they just paid for that pentest is a written report.
    2017: GCIH | LFCS
    2018: CySA+ | PenTest+ |CCNA CyberOps
    2019: VHL 20 boxes
    2020: OSCP eCPPT OSCP eCPPT (a bit undecided)
  • mirror51mirror51 Posts: 81Member ■■■□□□□□□□
    Thank guys , i dont have any time limit and i only want to do it for my self. i dont have any requirements to pass or to get job . I already have job as DevSecOps enginner and i am thinking to get next job in Pen testing and i will get some exposure in this company.

    But Ideally my plan is to finish OSCP OSCE OSEE within 2 years and yes regarding money i have no problem , if i pass then i can get that from my company if i fail then its from my pocket but i am happy even if i have to spend money on my skills
Sign In or Register to comment.