Infosec_Sam said: That being said, I'd recommend the CySA+ to you if you really want to grab another cert before leaving your current workplace. You might be able to leverage it into a higher salary when you leave, which never hurts!
NetworkNewb said: Infosec_Sam said: That being said, I'd recommend the CySA+ to you if you really want to grab another cert before leaving your current workplace. You might be able to leverage it into a higher salary when you leave, which never hurts! I would venture to guess most places aren't asking for the cert or most managers even knowing what that is if they saw it on a resume. I took the beta exam of that cert and I do think the knowledge is useful on there, but for him looking for a new position soon I can't imagine anything coming even close to the CISSP as far as what employers will be looking for and what would most likely give him a higher salary.
Infosec_Sam said: I've thought about this for a while as well, and I ultimately narrowed it down to two certifications: the CySA+ and the SSCP. What I'm ultimately aiming for is either the CASP+ and/or the CISSP, depending on how technical I'd like to get. The CySA+ would essentially pick up where the Security+ left off, and would be a great gateway into a mid-level security analyst/engineer role. After that, I could pick up the Pentest+ for some OffSec training on my way to the CASP+. On the other hand, the SSCP would essentially be a fast track to the CISSP, but the CISSP has a 5-year cybersecurity experience requirement to get certified, which I don't have at this time. That being said, the CISSP does pull much more weight on a resume than the CASP+, so once I finally check that box, I'd be at a significant advantage.So what would I recommend for you? If you are trying to break into cybersecurity with 8 years of IT experience and a Security+, I think you would find more success by spending less time studying and more time applying/interviewing. You've got everything you need to jump in, so you might as well test the waters! That being said, I'd recommend the CySA+ to you if you really want to grab another cert before leaving your current workplace. You might be able to leverage it into a higher salary when you leave, which never hurts!
bigdogz said: I think if you want to start obtaining some certifications you should start withCASP, CEH, SSCP, CISSPYou can still skip the CySa+ as it is like the CEH but the CEH has more recognition.Trying to hit the CISSP out of the box may throw you off as it is more of a management certification and uses your experience on a great deal of questions.Good Luck!!!
LonerVamp said: What do you want to do in cybersecurity? Are you looking for offense, defense/general, management...?With 8 years in IT and Security+ already done, you should take a strong look at the full CISSP. It is more about management, but there's tons of little technical trivia to know, and it's widely recognized.Do CEH if you have a reason to do CEH, like you're looking for gov jobs that really adore that cert. Otherwise, you could get better with PenTest+ or just jumping somewhere into the eJPT->eCPT->OSCP/GPEN track. Obviously this is offense heavy.If your company will pay for it, I'd always look at SANS courses and certs.
imnewbie said: LonerVamp said: What do you want to do in cybersecurity? Are you looking for offense, defense/general, management...?With 8 years in IT and Security+ already done, you should take a strong look at the full CISSP. It is more about management, but there's tons of little technical trivia to know, and it's widely recognized.Do CEH if you have a reason to do CEH, like you're looking for gov jobs that really adore that cert. Otherwise, you could get better with PenTest+ or just jumping somewhere into the eJPT->eCPT->OSCP/GPEN track. Obviously this is offense heavy.If your company will pay for it, I'd always look at SANS courses and certs. Quick question, I am curiosity to know; can you provide from hard to easy certification? I also want to explore to get some good certification. I have some time i did not get a promotion. I want to pass some good certification to find another better or get promotion within the company
LonerVamp said: imnewbie said: LonerVamp said: What do you want to do in cybersecurity? Are you looking for offense, defense/general, management...?With 8 years in IT and Security+ already done, you should take a strong look at the full CISSP. It is more about management, but there's tons of little technical trivia to know, and it's widely recognized.Do CEH if you have a reason to do CEH, like you're looking for gov jobs that really adore that cert. Otherwise, you could get better with PenTest+ or just jumping somewhere into the eJPT->eCPT->OSCP/GPEN track. Obviously this is offense heavy.If your company will pay for it, I'd always look at SANS courses and certs. Quick question, I am curiosity to know; can you provide from hard to easy certification? I also want to explore to get some good certification. I have some time i did not get a promotion. I want to pass some good certification to find another better or get promotion within the company I think when answering this, the first thing that comes to mind is this graphic. And every time I think about it, it's a pain to track down who maintained/made it. (It's not me!)
NetworkSpoon said: For those of you that have completed or mention SSCP, Ive noticed there isn't a lot of highly decorated self-study material out there for it. What did you use or did most of you skip it and got straight to CISSP?
