Do I need CASP?

test4500test4500 MemberRegistered Users Posts: 18 ■■■□□□□□□□
Hi guys following in the mighty footsteps of 'averageguy' I have tried to reboot my career, I feel i have a lot of skills around being a PM but wanted to go from declining sector to a growing one (info Sec) so I have done:

ISC2: SSCP and CISSP - all done and endorsed
Cisco cyber Ops: and may do Pro early next year
Comptia: CySA+
ISACA: CISM but need to get it signed off, will do CISA and CRISC
IAPP: CIPP/E and am thinking about CPT and CPM but far from convinced
Azure/AWS: Have a Admin and Security certs in both

Is it worth me doing CASP? what do you think it might add? ...am tempted but think it might just look like a badge collection process

Any views?

thanks

Have: CISSP, SSCP, CYSA+, CCNA CyberOp, CIPP/E, PRINCE, ITIL v3, MS Azure 900/103/500, AWS SA-A, Splunk Core User , CyberArk Trustee......
2020 Goals: CISM/CISA, AWS CDA-P/SA-P/Security, Splunk Power User

Comments

  • JDMurrayJDMurray MSIT InfoSec, CISSP, SSCP, GSEC, EnCE, C|EH, CySA+, PenTest+, CASP+, Security+ Surf City, USAAdmin Posts: 11,843 Admin
    What's your purpose for getting all of these certs? To acquire knowledge to be a better Information Security professional, or to get more letters on your resume to increase your chances of getting a first-round interview?

    To be a better pro, you can read and study any certification material without taking the cert exam, so do spend some time reading up on the objectives of CASP+ and it will help you fill in some holes in your InfoSec knowledge. If you are looking to make your resume more attractive to hiring managers, do some searching on the major job boards and check how many job postings mention "CASP" and that will indicate its importance to your resume and interview desirability. How important any certification is to your getting hired is entirely determined by the people who make the hiring decisions, and you find out what they want by looking at their job postings.
  • yoba222yoba222 Senior Member Member Posts: 1,181 ■■■■■■■■□□
    edited August 8
    No. Too many certs. If you add twice as many certs as you have, instead of looking twice as appealing, you'll look like a paper tiger. I think you're right about at the limit as-is, at least until you're doing infosec.
    A+, Network+, CCNA, LFCS,
    Security+, eJPT, CySA+, PenTest+,
    Cisco CyberOps, GCIH, VHL,
    In progress: OSCP
  • test4500test4500 Member Registered Users Posts: 18 ■■■□□□□□□□
    JD - Yes i have done the course ...and feel i know the material but purpose is entirely to get me interviews, I think with CISSP I have proven I know the material but its just not getting me interviews at the moment. 

    Yoba - Yes thats the concern looking like a paper tiger ....I suspect lots of people are looking like that at the moment!

    thanks 
    Have: CISSP, SSCP, CYSA+, CCNA CyberOp, CIPP/E, PRINCE, ITIL v3, MS Azure 900/103/500, AWS SA-A, Splunk Core User , CyberArk Trustee......
    2020 Goals: CISM/CISA, AWS CDA-P/SA-P/Security, Splunk Power User
  • kaijukaiju Member Posts: 421 ■■■■■■□□□□
    There is no need for CASP if you already have CISSP and CISM.
    Work smarter NOT harder! Semper Gumby!
  • yoba222yoba222 Senior Member Member Posts: 1,181 ■■■■■■■■□□
    To clarify, I'm not discouraging getting the CASP+ for the experience and learning growth it brings. I've been tempted to go after this one for a couple of years now and might still do it for that reason. Though I'll likely get the CISSP first, and then only put that one on the resume. Getting to the point now where I'm leaving off irrelevant certs/ associates degrees because there's too many.

    You already have a really decent cert pedigree going on.
    A+, Network+, CCNA, LFCS,
    Security+, eJPT, CySA+, PenTest+,
    Cisco CyberOps, GCIH, VHL,
    In progress: OSCP
  • SteveLavoieSteveLavoie Member Posts: 850 ■■■■■■■■□□
    I feel you have a lot of certification for someone not working already in the field of infosec. I know you do them for transitionning but it look like you are collectionning them.   In that regard, CASP+ is Comptia equivalent for CISSP. There is not much value go get it.
  • DiffieHellman173DiffieHellman173 Network+ Security+ CASP+ ITIL-Foundation ItalyRegistered Users Posts: 17 ■■■□□□□□□□
    Hiring managers want to see real world experience on your resume. If it were me I would be in the business of collecting that. Certifications are great additions to backup what you have done and show you have motivation to stay current in the field. But again experience in the field > all. I took CASP and learned a great deal of knowledge however, the main goal was because DOD requires it for higher levels of IAT/IAM appointments.
  • test4500test4500 Member Registered Users Posts: 18 ■■■□□□□□□□
    Yes i get your point about experience ....but I can only play the cards I have!
    Have: CISSP, SSCP, CYSA+, CCNA CyberOp, CIPP/E, PRINCE, ITIL v3, MS Azure 900/103/500, AWS SA-A, Splunk Core User , CyberArk Trustee......
    2020 Goals: CISM/CISA, AWS CDA-P/SA-P/Security, Splunk Power User
  • DiffieHellman173DiffieHellman173 Network+ Security+ CASP+ ITIL-Foundation ItalyRegistered Users Posts: 17 ■■■□□□□□□□
    test4500 said:
    Yes i get your point about experience ....but I can only play the cards I have ... 
    What about entry level IT Service Desk job? This would help get the feet wet and with all of those certs and motivation I'm sure you would move up very quick. Just my 2 cents.
  • SteveLavoieSteveLavoie Member Posts: 850 ■■■■■■■■□□
    What is your current experience and job?  Are you in IT and looking to shift toward infosec ?
  • test4500test4500 Member Registered Users Posts: 18 ■■■□□□□□□□
    Hi I am pretty experienced in IT and Project Management so help desk not for me right now (...but if things get worse.....) i think the main value add I offer is in delivery of programs ...or the productionising of work that is frequently done ad hoc. 
    Have: CISSP, SSCP, CYSA+, CCNA CyberOp, CIPP/E, PRINCE, ITIL v3, MS Azure 900/103/500, AWS SA-A, Splunk Core User , CyberArk Trustee......
    2020 Goals: CISM/CISA, AWS CDA-P/SA-P/Security, Splunk Power User
  • E Double UE Double U Member Posts: 1,747 ■■■■■■■■■□
    test4500 said:

    Is it worth me doing CASP? what do you think it might add? ...am tempted but think it might just look like a badge collection process

    If you are considering a certification without knowing what it might add then I definitely think you are a badge collector. Nothing wrong with that in itself because at this point in my career I believe I am also collecting certs as a hobby besides the ones that are required by my employer. But when someone with CISSP and CISM that is considering other ISACA credentials asks others about the worth of CASP it seems odd to me.

    I wonder how your actual experience matches up against the credentials that you currently hold. You mentioned CISSP is not getting you interviews so you might not actually have the experience desired for the roles you are applying for. More certifications will not fix that. There is a possibility that you do have the knowledge/skills, but just a poor resume perhaps. 

    I vote no on CASP unless you are targeting a position that requires it. If you notice that CASP is regularly mentioned in job postings for your area then knock yourself out, but if (ISC)2 and ISACA credentials are not getting you the responses that you want then I am doubtful about CompTIA. 

    Just my $0.02
    Alphabet soup: CISSP, CCSP, CISM, CISA, GDSA, GPEN, GCIA, GCIH, GCCC, CEH, Azure Fundamentals, Azure Security Engineer Associate, ITIL 4 Foundation, and more.

    2020 goals: AZ-900, AZ-500, GDSA, ITILv4

    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
  • test4500test4500 Member Registered Users Posts: 18 ■■■□□□□□□□
    ......some interesting points 

    - 'considering a certification without knowing what it might add' ....some points to consider, its often hard to determine the value of something until you have it, one of my challenges throughout my career to colleagues who 'claim' to have vast knowledge is ....where is the independent third party verification (certification) ....how is CASP respected in the infosec community, how many CASPS are there ....I think there are 150K CISM's, 130K CISSPs but how many CASP's? I cannot find this number

    Also ISACA and ICS2 both offer additional certs .....but some times one wins out .....IAPP for Data Privacy for example, I really don't see ISACA's Data Privacy cert getting traction, ICS2 CCSP (am running through material now) has 7K certified and really is a well structured overview of cloud security, but how many Azure or AWS certs are there ....I have never seen CCSP asked for and done think either recruiters or hiring managers know what it is (less than 800 certified in UK).

    'I wonder how your actual experience matches up against the credentials that you currently hold' ......without being defensive, I think pretty good .....(but matter of opinion I suppose) ......i have no idea how you would get through CISSP otherwise ...its just too broad in scope, is the market too tough right now? is my resume rubbish ...hmmmm.....am thinking hard on this one!

    'I am doubtful about CompTIA' ...me too!....and I think that's my problem ...i like the materials, i like what comptia is trying to do ....but am not sure they are getting traction in the market, for me skill wise it's low hanging fruit to get CASP ....but the cost/value concerns me

    thanks for your comments

    Have: CISSP, SSCP, CYSA+, CCNA CyberOp, CIPP/E, PRINCE, ITIL v3, MS Azure 900/103/500, AWS SA-A, Splunk Core User , CyberArk Trustee......
    2020 Goals: CISM/CISA, AWS CDA-P/SA-P/Security, Splunk Power User
  • E Double UE Double U Member Posts: 1,747 ■■■■■■■■■□
    The amount of holders of a particular certification doesn't really matter to me so I do not understand the motivation to know the number. How respected a cert is can vary depending on region, industry, and hiring managers personal biases. Are you making a correlation between what is respected with what is in demand? Several people on this forum do not respect CEH, but that does not stop it from being listed in job postings. I know successful professionals that place no value on certs at all while some others hold them very high. It is all subjective and should not be one's driving factor. If a consensus is what you are searching for I do not believe you will find it. 

    All vendors offer multiple certs and which one "wins out" when applying for a job depends on what the requirements for a job are. CCSP is just meant to be a vendor agnostic holistic view of cloud security to test understanding of concepts while Azure and AWS certs focus on hands on aspects of their solutions. I look at some certifications as complimentary to each other instead of one or the other. I have two Azure certifications that are relevant to my current environment and went for CCSP to get the bird's eye view that goes beyond the trenches. Whether recruiters know about the (ISC)2 cloud offering is not my concern. 

    I think one could get through any exam with enough studying and gain an experience-based certification by "modifying" his/her resume. Not that I am accusing you of that, but I made my initial comment about the experience because of you mentioning that CISSP is not getting you the attention that you seek. Maybe my point wasn't clear, but I was trying to suggest that if one has CISSP-level experience along with the credential then I do not see why that person would pursue CASP for getting over the hump. I could be wrong, but I do not see that pushing one over the edge. 
    Alphabet soup: CISSP, CCSP, CISM, CISA, GDSA, GPEN, GCIA, GCIH, GCCC, CEH, Azure Fundamentals, Azure Security Engineer Associate, ITIL 4 Foundation, and more.

    2020 goals: AZ-900, AZ-500, GDSA, ITILv4

    "You tried your best and you failed miserably. The lesson is, never try." - Homer Simpson
  • SteveLavoieSteveLavoie Member Posts: 850 ■■■■■■■■□□
     because of you mentioning that CISSP is not getting you the attention that you seek. Maybe my point wasn't clear, but I was trying to suggest that if one has CISSP-level experience along with the credential then I do not see why that person would pursue CASP for getting over the hump. I could be wrong, but I do not see that pushing one over the edge. 

    I second what E Double U said.. If CISSP cert does not get you the attention of interviewer.. getting other certs like CASP will not help at all. 


  • charismaticxcharismaticx Sec+, GSEC, GCED, GCIH, CEH, CySA, GSNA, CASP, PenTest +, GCIA, Linux + , AWS CCP, CISM, GPEN, GCWN Member Posts: 141 ■■■■□□□□□□
    I’m honestly surprised that the CISSP didn’t garner much interest. However, you also have a slew of other eye catching credentials. In my opinion you don’t really need CASP unless the cert really catches your eye. When I took the exam a couple years ago, I kept hearing how challenging it was. The exam wasn’t entirely difficult, but having experience in the field really helps. 
    I hold both CISM and CASP and I currently don’t have much interest in earning the CISSP. I’m at the point where I’m trying to specialize on my craft and not worry about eye candy. 
    Goals: GCWN, AWS Solutions Architect; RHCSA ; OSCP; GSE; CISSP
  • test4500test4500 Member Registered Users Posts: 18 ■■■□□□□□□□
    Yes! I am surprised as well - I really liked CISSP, the courses/books/websites, learnt so much - and the fact there are only 7k CISSPs in the UK, I really felt it would make a difference! i keep reading of a shortage of infosec people but cannot see the job adverts to support that!

    I think the lower level Comptia certs are great and liked the CySA+ a lot, CASP just felt like a good thing to do next. Like you having looked through the course and some videos it looks like something I can do without too much extra effort.

    I would love to specialise ....Data Privacy/Cloud security etc....but getting set up in an infoSec job is proving a monumental challenge right now!
    Have: CISSP, SSCP, CYSA+, CCNA CyberOp, CIPP/E, PRINCE, ITIL v3, MS Azure 900/103/500, AWS SA-A, Splunk Core User , CyberArk Trustee......
    2020 Goals: CISM/CISA, AWS CDA-P/SA-P/Security, Splunk Power User
  • yoba222yoba222 Senior Member Member Posts: 1,181 ■■■■■■■■□□
    Perhaps going the other direction and omitting some credentials from your CV might provide better response. If I were applying to be a cashier at McDonalds and I had a PhD, I'd probably leave the PhD off the application altogether.
    A+, Network+, CCNA, LFCS,
    Security+, eJPT, CySA+, PenTest+,
    Cisco CyberOps, GCIH, VHL,
    In progress: OSCP
Sign In or Register to comment.