Hi all. I wanted to get some advice. Recently our "big brother" organization (National Electric Coop) purchased a bulk amount of SANS vouchers. I was signed up for the SEC401 course (on-demand). If given the option, I would have chosen to take a higher level course. However, I am thankful for the free voucher and am not complaining at all. The course was paid for in full but if I want to take the actual certification I will need to pay out of pocket. My question is would it be worth spending the money to get the certification? I currently hold the Security+, eJPT and CySA+ as far as security certs go. My current position is Systems & Security Admin. If I go for the cert or not I will and have learned a lot from the course. Just curious if you all think it would add value to have the GSEC cert on my resume considering my other certs and experience.
Security Engineer/Analyst/Geek, Red & Blue Teams
OSCP, GCFA, GWAPT, CISSP, OSWP, AWS SA-A, AWS Security, Sec+, Linux+, CCNA Cyber Ops, CCSK
2021 goals: maybe AWAE or SLAE, bunch o' courses and red team labs?
When you start trying to do Work Study and stuff, you kinda take what they give you. For me, except classes that don't have certification exam attempts Ha Ha Ha
Ok, now let me get back on track.
The on-demand is 7k. The certification attempt which provides two practice tests (about 100'ish bucks a piece) is 10% of that 7k. So, realistically on some quick math, the certification attempt costs about 500 bucks.
If someone offered to sell you a 70,000 automobile for 7k worth of work that has to be done, would you take it?
I would not compare, eJPT, Security+, and CySA to GIAC Exams. That is called disrespect around these parts, you might get a 45 day ban for bringing it up LOL. What I will say is, if you have a firm understanding of the Security+ topics, a good portion of the SANS books will just be refresher training. The exam is not hard, if you have a firm understanding of the Security+ topics. Those topics are the foundation to career success.
Yes, the GSEC certification will add value. What I do and I suggest you do is, not look at how the certification will benefit the current job. You already hold that position, you already have the job. Look at how the certification will benefit you in another role later on down the road. I don't do anything cert wise for my current role, I am always looking at how I can be competitive for my next role. I have a job, not a career. A career is staying10-20 years. A careers is where you retire after X amount of years. People don't stay at jobs 10-20 years, so I have to think 2-5 years from now where I want to be..
15 years total IT experience. Half of that was in DoD environments. Everything from Sat comms, Submarine comms, Microwave, as well as Desktop/Sysadmin/Network Tech/Info Assurance smorgasbord lol. (Military and DoD IT contractor).
5 years total Sysadmin experience and 2 years Secadmin. My current role is hybrid (60/40). Hope to eventually move into a position that is exclusively Infosec based.
No doubt - CompTIA and Elearnsecurity are nowhere near the level of GIAC. I am about 50% of the way through the GSEC course. I agree with you on preparing for the next role. Honestly I average around 3 years per role. Employers tend to be keen on paying less for the same skillset when promoting internally vs hiring outside the organization to fill a position. I've adjusted accordingly lol
In my opinion, my answer is yes, just make sure you sign up for the certifications attempt during classes, it will only cost you $650 instead of a much higher cost if you wait. I'm kina in the same boat, I currently hold three GIAC certifications, none of which I currently need for my current position. Sure I can save myself $1,200 every four years by not renewing them, but what are certifications really anyway? They are insurance. Having desirable, current certifications make you much more marketable in the job market. Just look at the government. You can be a complete moron, but having one security certification, one technical certification and a security clearance, YOUR HIRED! Sure I can probably finish our my working career where I work, learning the bare minimal to keep my job. I could also get rid of my house fire insurance, cause after all what are the odds my house is going to burn down? Same goes true with my car insurance, long as I drive careful, I will not get stopped by the police or get into an accident, think of all the money i could save!
In short yes, you could pay the odds and do without insurance, but is it really worth the risk. You employer is paying the bulk of the cost, why wouldn't you just get the certification, for just in case.
Security+, eJPT, CySA+, PenTest+,
Cisco CyberOps, GCIH, VHL,
In progress: OSCP