Security + or GSEC or GWAPT
Hi All ,
I am a new member of this site, and I this website very helpful. You guys are doing a great job.
I am somewt confused between what certifications actually i am eligible to do or rather would say , certifications which are related to my job . I have 2+ years exp in IT and in that 1 year exp in Fortify 360 security testing . I would like move forward into this security field , i came across so many certifications . So i am bit confused where to start with .
I would be glad to hear your recommendations ..
-Bharath.
I am a new member of this site, and I this website very helpful. You guys are doing a great job.
I am somewt confused between what certifications actually i am eligible to do or rather would say , certifications which are related to my job . I have 2+ years exp in IT and in that 1 year exp in Fortify 360 security testing . I would like move forward into this security field , i came across so many certifications . So i am bit confused where to start with .
I would be glad to hear your recommendations ..
-Bharath.
Comments
-
paul78
Member Posts: 3,016 ■■■■■■■■■■
Unfortunately, GWAPT doesn't really go into defensive secure development practices. But it's probably relevant after you have a little more experience. The most relevant cert based on your description is probably CSSLP. Check out www.isc2.org.
I think Security+ may be interesting but given your experience it's not likely to be relevant.
What type of code do you test?
Maybe a mod can move this thread to the general security certification forum, may get more traction on this topic. -
Bharath87
Member Posts: 5 ■□□□□□□□□□
Unfortunately, GWAPT doesn't really go into defensive secure development practices. But it's probably relevant after you have a little more experience. The most relevant cert based on your description is probably CSSLP. Check out www.isc2.org.
I think Security+ may be interesting but given your experience it's not likely to be relevant.
What type of code do you test?
Maybe a mod can move this thread to the general security certification forum, may get more traction on this topic.
I actually test the product and platform source code written in C# , to cross check vulnerabilities like XSS , XPath injection , SQL injection etc ..
CSSLP needs atleast 4 yrs of exp i guess , so i guess i cant do in near future ... Any others options do you guys see ?.... Bcoz i dont have that clear idea
regarding this .. -
Bharath87
Member Posts: 5 ■□□□□□□□□□
I test fr security vulneravilities in product source code written in c#.... tats y searching fr a relevant certification ..cudnt fix my mind on a single thing ...