Any opinions on SEC530?
It's been some time since it's been out. I was wondering if anyone has attended the course?
Comments
-
catscaps Member Posts: 24 ■■■□□□□□□□I attended, what do you want to know. I thought it was valuable, but of course the value of the course depends on your current knowledge set and job function. There is zero trust stuff, hardening network and system defenses, etc.
-
jchamilton Member Posts: 1 ■□□□□□□□□□I would also like some feedback on this course. I am a firewall administrator with GCIA and my company is giving me a choice between SEC530 GDSA or FOR572 GNFA next.
I was originally planning on the 530 because of the course objectives, but I recently read elsewhere that the SEC530 was disappointing and still needs to mature some. I am also not sure if the GNFA will overlap too much with GCIA. -
MitM Member Posts: 622 ■■■■□□□□□□catscaps thanks for the reply. Most of my focus is network security. I was really looking for opinions of the course....the content, value? etc.
@jchamilton why so many replies with the same stuff? lol -
iBrokeIT Member Posts: 1,318 ■■■■■■■■■□Your best bet in situations like this would be to check out the SANS webcast archive. There are two webcasts about SEC530 that should give you a feel for the class: The Perimeter is Dead: Introducing SEC530: Defensible Security Architecture by Justin Henderson, Eric Conrad and Trust No One: Introducing SEC530: Defensible Security Architecture by Eric Conrad.2019: GPEN | GCFE | GXPN | GICSP | CySA+
2020: GCIP | GCIA
2021: GRID | GDSA | Pentest+
2022: GMON | GDAT
2023: GREM | GSE | GCFA
WGU BS IT-NA | SANS Grad Cert: PT&EH | SANS Grad Cert: ICS Security | SANS Grad Cert: Cyber Defense Ops | SANS Grad Cert: Incident Response -
catscaps Member Posts: 24 ■■■□□□□□□□MitM the course has some hands-on labs and is a good overview of locking down systems- from network to systems to cloud.
I am not sure how maturing the class would help it get better. I know some people that the class started kinda slow on the first day, but as I asked each day, they were very happy that they took the course. I took SEC566, I would say this SEC530 is kind of like the companion to it in a way. SEC566 is the 20 critical controls, and SEC530 kinda focuses on the first few, the more important ones and goes over have to secure.
jchamilton FOR572 and SEC530 are two very different courses and depend where you are in your career. Are you responsible for securing or are you responsible for response/remediation? How robust is your current network security posture? If you are in the building phases or reevaluation phase, then maybe do SEC530. If you have an established network security program, and are looking to advance your knowledge, then maybe the FOR572 is a better choice. -
E Double U Member Posts: 2,238 ■■■■■■■■■■catscaps said:I took SEC566, I would say this SEC530 is kind of like the companion to it in a way. SEC566 is the 20 critical controls, and SEC530 kinda focuses on the first few, the more important ones and goes over have to secure.Alphabet soup from (ISC)2, ISACA, GIAC, EC-Council, Microsoft, ITIL, Cisco, Scrum, CompTIA, AWS
-
MitM Member Posts: 622 ■■■■□□□□□□E Double U said:This is good to know. I have taken SEC566 earlier this year and plan on taking SEC530 in January. I am still not 100% sure that I should take the course.
-
E Double U Member Posts: 2,238 ■■■■■■■■■■MitM said:E Double U said:This is good to know. I have taken SEC566 earlier this year and plan on taking SEC530 in January. I am still not 100% sure that I should take the course.Alphabet soup from (ISC)2, ISACA, GIAC, EC-Council, Microsoft, ITIL, Cisco, Scrum, CompTIA, AWS
-
MitM Member Posts: 622 ■■■■□□□□□□E Double U said:MitM said:E Double U said:This is good to know. I have taken SEC566 earlier this year and plan on taking SEC530 in January. I am still not 100% sure that I should take the course.
-
E Double U Member Posts: 2,238 ■■■■■■■■■■I have paid for exams out of pocket earlier in my career, but never training and especially not SANS. If I was determined to attend SANS and had to pay it for myself then I would go with the work study option.Alphabet soup from (ISC)2, ISACA, GIAC, EC-Council, Microsoft, ITIL, Cisco, Scrum, CompTIA, AWS