jobs that use security+?

jacktheripper994465221

someone mentioned that federal jobs will start requiring security +...

does anyone know of any current jobs that require security +?


i was thinking FBI, CIA, etc... or some sort of computer forensics job for the police or government, is this test what i should be aiming for?

goforthbmerry

I do not know about FBI or CIA. They have a whole list of requirements that make the Security+ exam small potatos. The DoD is definately added it to their list of requirements.

Webmaster

Even though some organizations may require it, by itself it won't lead to a security job. It's a good one for net and sys admins who should know the basics of security, and for those who want to go further with other infosec certs. It's a theoretical foundation and doesn't indicate any skills with particular security technologies for example.

Webmaster

I doubt very much 'the FBI' was a SME (maybe someone working at the FBI, who they didn't need for real security work... ). Let me put it this way: I hope not. But there's a list on the CompTIA site somewhere showing the organizations involved in creating Security+.

I can say for sure Security+ puts much greater emphasis on forensics than CEH/CHFI does.

You mean the other way around right? There's no emphasis on forensics in Security+ and CHFI is entirely about forensics.

CEH is a black hat cert.

The topics/knowledge don't make it black, it's what you do with it. If you want to put it in those terms, the CEH is a white hat cert. Even more simplistic but: ehitcal = white. It's intented for network and sys admins so they can defend against black hats (by attacking themselves).

keatron

Philippatos wrote:

Nope, I meant exactly what I wrote. My CEH instructor said he teaches the CHFI class and it uses the exact same material. There's absolutely nothing in there, for example, about preserving evidence (tag it and bag it) in order from most volatile to least. I learned about that from my Security+ studies, using official CompTIA/Thomsom courseware.

Whoever decided putting "forensics" in the title would make the word "hacker" more palatable must have been smoking crack, IMVHO. CHFI is still a pen tester cert. Lipstick on a pig...

I teach CHFI and have taught Security+ many times. And Security+ material is no where even close to the CHFI material. The two manuals for CHFI are the exact same thickness as the C|EH, but deals strictly with forensics. You learn stuff like Alternate Data Streams, how to do forensics analysis of NTFS, FAT, ext2 ext3, and other file systems. You actually get to use Encase to examine evidence, look at clusters, and other forensics specific things. You also do bit to bit copies of hard drive images. The list goes on and on. I can't imagine how your instructor came to the conclusion he did. There ARE exercises in the CHFI about preserving evidence, most volitile to least, and everything else you just said there werent. You also do exercises which teach you how to maintain a solid chain of custody. You learn how to make intelligent decisions about whether you want to preserve volitile information or be most concerned about information stored on the hard drive. I know every instructor who's authorized to teach CHFI, (there's only 15 of us) and I can't imagine any one of them saying something like that. Keep in mind, "learning" about preserving evidence and actually doing it are two different things.

Also, it should be pointed out that CHFI nor C|EH are "blackhat" certs.
CHFI is NOT a pen tester cert either.