CISSP to GSEC, is it advisable ? Or on to something else..
Hello
I recently took my CISSP exam and passed but as I was reading the many comments about the value of the certification, I read that I should also add a few more 'technical' certification from vendor like SANS. I read that the GSEC domains are similar to the CISSP domains so does anyone recommend that I also get met my GSEC even though I already have my CISSP and if so how easy would it be for me to take GSEC right away before I start forgetting the CISSP courseware?
I recently took my CISSP exam and passed but as I was reading the many comments about the value of the certification, I read that I should also add a few more 'technical' certification from vendor like SANS. I read that the GSEC domains are similar to the CISSP domains so does anyone recommend that I also get met my GSEC even though I already have my CISSP and if so how easy would it be for me to take GSEC right away before I start forgetting the CISSP courseware?
Comments
All that being said, the book Network Security Bible by Eric Cole is a very complete reference of the topics on the GSEC exam. Dr. Cole has spent the past 14 years researching, writing, and teaching the SANS 401 Security Essential course and maintains the content of the GIAC GSEC exam.
BTW, the cost to challenge a GIAC exam is currently $999US.
Forum Admin at www.techexams.net
--
LinkedIn: www.linkedin.com/in/jamesdmurray
Twitter: www.twitter.com/jdmurray
This.
You will be at a disadvantage going into the exam without having read/studied the actual SANS courseware. SANS exams are based solely on their material, so while someone can certainly challenge an exam and pass, it is a much more difficult path.
Why not have your employer pay for the class?
laughing_man,
I wish that I could get them to pay for it but they won't because like most management they'd rather rely on security through obscurity, in other words we are too small and unimportant to get the attention of any attacker, as ridiculous as that sounds.
And the black book bag they passed out at SANS training is quite large. It easily fits the six SANS 401 books and then some. I was think about just taking the books and my notes to the exam to avoid the formality of having the bag searched, but that's a lot of bound paper to juggle.
Forum Admin at www.techexams.net
--
LinkedIn: www.linkedin.com/in/jamesdmurray
Twitter: www.twitter.com/jdmurray
Regarding the SnortCP:
http://www.techexams.net/forums/security-certifications/77438-review-snort-ids-ips-rule-writing.html
You can probably do just as well in your career by reading the Snort User's Guide and running your own IDS, but intrusion detection and analysis requires a prerequisite set of skills, namely an understanding of low-level networking protocols as well as payload insepction.
I don't want you to think I am discouraging from challenging GSEC. Your background certainly shows that you are a better candidate than most to challenge this exam.
GSEC covers a lot of networking concepts, certainly not CCNA level, but still fairly in depth. Perhaps you could pitch to your employer from that angle, that the GSEC cert is holistic in its approach to security. I certainly walked away knowing more about network functionality.