Security+ done, thinking about CISSP next. Any thoughts

BeachTech_

Well, I am done with the Security+. I was thinking about taking the CISSP. I find I.T. Security facinating, so it is easy to study for me.

I was thinking about making the next level security certification my goal for 2012. I was planning on taking my time and testing in December 2012 using a solid study schedule. I have an A+, Network+, Security+, Masters of Business Administration with an emphasis in I.T., over 20 years in I.T., and the last five in law enforcement I.T. Security (dealing with FBI, DoJ, etc government security regulations).

I am thinking the CISSP would be the next step. I want to make sure my resume looks better than the competition (in other words, my current employer is not going to give me any extra $$ if I get a CISSP). Any ideas/hints from anyone.

Thank you!

JDMurray

BeachTech_ wrote: »

I am thinking the CISSP would be the next step. [...]over 20 years in I.T., and the last five in law enforcement I.T. Security (dealing with FBI, DoJ, etc government security regulations).

You have the professional work experience to get the full CISSP cert, and you enjoy InfoSec, so definitely go for it. If you qualify for the ISACA CISA (security auditing) or CISM (security management) certs, you should seriously consider them as well.

BeachTech_ wrote: »

I want to make sure my resume looks better than the competition (in other words, my current employer is not going to give me any extra $$ if I get a CISSP).

Well, with over 80,000 people world-wide having the CISSP, you'll have some competition, but they all won't be applying for the same job(s) as you.

BeachTech_ wrote: »

Thank you!

No prob! That's what we're here for!

Darril

I echo JD's advice "definitely go for it." The Security+ helps build a good foundation but the CISSP separates you from the pack (even if it's a big pack).

Since you plan on taking 11 months to pursue this certification, you may want to consider using SSCP as a stepping stone. You'll find there is a lot of overlap in the material. JD posted a good blog about his SSCP certification. The SSCP Certification Experience - TechExams.net IT Certification Blogs

Also, in case you haven't found it yet, this site has an active forum for SSCP and CISSP here: (ISC)² SSCP and CISSP Forums.

Good luck.

Darril Gibson