What next?

Hi guys,

this is my first post here and I like to start a discussion about what I should study next.

I've already done these certifications:

Sun Certified Java Programmer (2000)
Certified Ethical Hacker (2007)
EC Security Analyst (2010)
CISSP (2009)

Actually I'm doing the PWB (Pentesting with Backtrack), but this is getting some kind of a long term project to me.

I'm still interested in programming (mainly in Web Services)
I like Linux and I already thought about doing LPI. (I already read the book)
CISA or CISM would also do well in my C.V.
I also like forensics. So maybe there's an issue, too.

I've seen that many of you people have A+, Network+ and Security+. Is this something I also should consider or not worthy as I've already done some fundamental security certifications?

About me:
I've studied computer science (MSc) and I've worked as an software developer and architect from 1996 till 2003. Since 2005 I'm into the security consulting business, therefore I'm trying to improve my skills through certifications. My background is more on software, applications and iso layer 7. So my main focus is actually on Web Application Security (OWASP). But I'm also interested in network security and skills, not only because my skills in network security are improvable.

Any suggestions, questions, hints, experience is highly appreciated.

--Scruffy--

Find more posts tagged with

Free for TechExams community: Cybersecurity salary guide

Compare cert salaries and plan your next career move

Button

Comments

--Scruffy--

Nobody with a hint or comment?

badboyeee

You already have an impressive set of certifications so you don't need any of the CompTIA exams, those are entry level. Do one of the Linux exams and then how's about CCNA: Security??

N2IT

From what you wrote the CCNA:Security would be a nice find.

I wouldn't worry about the Comptia's

2E151

Continue along the ECcouncil path; ECSA, CHFI and finally the Licenced Penetration Tester.

Dakinggamer87

badboyeee wrote: »

You already have an impressive set of certifications so you don't need any of the CompTIA exams, those are entry level. Do one of the Linux exams and then how's about CCNA: Security??

I agree I would skip CompTIA at this point since you already have a solid knowledgebase

--Scruffy--

badboyeee wrote: »

You already have an impressive set of certifications so you don't need any of the CompTIA exams, those are entry level. Do one of the Linux exams and then how's about CCNA: Security??

Thanks for the advice. Yes the Linux exam would be quite funny, I guess. An hors d'oeuvre.

I'm not familiar with the CCNA world of exams, but I'll have a look at the CCNA:Security subjects.

--Scruffy--

2E151 wrote: »

Continue along the ECcouncil path; ECSA, CHFI and finally the Licenced Penetration Tester.

I'm already a certified ECSA. The LPT is only a payment, if you have the CEH and ECSA. So I would "only" cost me $500 to complete this certificate. But I'm not sure, if it's worth it. Especially because you have to pay those $500 every three years again.

earweed

True about being worthit. If it'll help you get a job in the field then it's worth it and may be deductible (you'd have to check to be sure)
As the others have said the CompTIAs may not be worth your while.

UnixGuy

I think you have enough nice certs already. Maybe ITIL V3 foundation, CISA, and CISM would be nice additions to you.

I think you don't need CompTIA certs at all.