Security+, mainly because it's well-recognized and several organizations require it for their security-related positions. From what I've heard, the Security+ curriculum is also a little bit more comprehensive than Information Security Foundation, but I can't confirm that.
Security+ is a good general-purpose certification.
Information Security Foundation based on ISO/IEC 27002 is valuable in ISO-centric organizations. This is targeted toward people who will in some way be involved in helping an organization achieve or maintain an ISO/IEC 2700* certification.
I'd also argue that people that can help organizations and maintain ISO certifications probably earn a bit more than the average Security+ holder....if that's what's meant by "valuable".
Really these certifications are two completely different things. Comparing them is not at all a matter of comparing two like things. Security+ certifies against general and baseline information security knowledge, whereas the ISO/IEC 27002 certifications certify against one's knowledge of the ISO/IEC 2700* standards and codes of practice.
I would say do both. You are comparing two different security certifications that are aimed at different things.
It's like comparing ITIL/FITS to ISO/IEC 20000 Foundation, Security+ is one of the things you will use to gain/maintain ISO/IEC 27002 for the organisation.
I couldn't locate any numbers on the Information Security Foundation cert but CompTIA has stated that over 50,000 people have become Security+ certified.
Good luck.
Darril Gibson
Author: CompTIA Security+: Get Certified Get Ahead
ISBN-10: 1439236364
I couldn't locate any numbers on the Information Security Foundation cert but CompTIA has stated that over 50,000 people have become Security+ certified.
Exin doesn't release these numbers publicly.
Here's the main page on their ISO/IEC 27000 individual certifications:
Comments
Security+
Free Microsoft Training: Microsoft Learn
Free PowerShell Resources: Top PowerShell Blogs
Free DevOps/Azure Resources: Visual Studio Dev Essentials
Let it never be said that I didn't do the very least I could do.
I will focus on the CompTIA Security+ sometime this upcoming year 2010.
Security+ is a good general-purpose certification.
Information Security Foundation based on ISO/IEC 27002 is valuable in ISO-centric organizations. This is targeted toward people who will in some way be involved in helping an organization achieve or maintain an ISO/IEC 2700* certification.
I'd also argue that people that can help organizations and maintain ISO certifications probably earn a bit more than the average Security+ holder....if that's what's meant by "valuable".
Really these certifications are two completely different things. Comparing them is not at all a matter of comparing two like things. Security+ certifies against general and baseline information security knowledge, whereas the ISO/IEC 27002 certifications certify against one's knowledge of the ISO/IEC 2700* standards and codes of practice.
MS
It's like comparing ITIL/FITS to ISO/IEC 20000 Foundation, Security+ is one of the things you will use to gain/maintain ISO/IEC 27002 for the organisation.
-Ken
Similarly, a Department of Defense directive (8570.1) mandates the Security+ certification for Department of Defense employees and contractors. This blog talks about it a little more:
Security Plus: Get Certified Get Ahead: DoD 8570.1 and Security+
I couldn't locate any numbers on the Information Security Foundation cert but CompTIA has stated that over 50,000 people have become Security+ certified.
Good luck.
Darril Gibson
Author: CompTIA Security+: Get Certified Get Ahead
ISBN-10: 1439236364
Security+ Tip of day Tweets
CompTIA A+, Network+, Security+ Blogs
Daily Network+ and Security+ Test Taking Tips on Twitter
Exin doesn't release these numbers publicly.
Here's the main page on their ISO/IEC 27000 individual certifications:
ISO/IEC 27000 - EXIN Exams
Also, might be fair to point out that they're adding an "Expert" level in 2010....
MS