Masters in Information Systems or Enterprise Security and Risk Management

So, i am currently enrolled in a MS in Information Systems program. I enjoy the program. However, after taking a few security courses in that program, i am thinking about switching my major to Enterprise Security and Risk Management.

The courses that i have already taken are also a part of that program so i wouldn't lose anything. Also the Enterprise Security program is shorter so i would graduate sooner. I am torn between these two programs. On the one hand, the Information Systems Masters would be more versatile in IT while the Enterprise Security Masters would pigeonhole me into Security. However, if Security is what i really want to do, that would obviously be the better choice. So i'm torn between playing it safe or going all in for security.

I currently only have a little hands on security experience though i do have a CISSP, CCNA Security, MCSE 2003: security and about 12 years IT experience.

Thanks in advance for the advice.

Find more posts tagged with

Save $250 on 2025 certification boot camps from Infosec!

Book now with code EOY2025

Button

Comments

GoodBishop

Out of curiousity, what are your thoughts on getting a general MBA? I mean, you have the 12 years of IT experience, the CISSP... that will speak strongly to your ability in IT.

I think that having a MBA allows you to understand the business a lot better, and it will help you more to attain levels in management.

Thoughts?

pinkydapimp

GoodBishop wrote: »

Out of curiousity, what are your thoughts on getting a general MBA? I mean, you have the 12 years of IT experience, the CISSP... that will speak strongly to your ability in IT.

I think that having a MBA allows you to understand the business a lot better, and it will help you more to attain levels in management.

Thoughts?

Well, when i was deciding which programs to originally do, i did consider an MBA(also considered a Masters in Project Management). however, i decided against it as i planned to do the program online and from talking with alot of people, being able to network is a big part of an MBA. The MSIS program is focused for Managers and does pretty much the same. i think the only benefit the MBA would have added is to help me if i wanted to stray away from IT. But i do think both would help to attain higher levels in management.

And here i am now, trying to decide if i want to stick with MSIS or specialize to get into and help to secure a long career in security. Im torn.

Valsacar

IMO most of these different flavors of Security degrees really all boil down to the same basic thing, slightly different focus but not really enough for most companies to care. It's like getting a BS in IT or a BS in CS, most companies don't care and they both are acceptable (yes, some more hardcore ones care, programming companies MIGHT care, but in general most say in IT or related field).

That said... you obviously have at least 5 years of experience in Security, otherwise you wouldn't have the CISSP.