Which IT Security Certs would advance me?

Hi,

I'm looking into getting a Security Cert to boost my career.

I have my Masters in Information Systems, 2 years in IT Auditing and currently in a Software Security/Admin position.

I was thinking of Security+ or SSCP but not sure what's better.

Thanks for input

Find more posts tagged with

Comments

danny069

I would definitely do the Sec+ then CISSP, I currently have the CISSP in my crosshair.

ptilsen

I believe you can get enough of a waiver to be meet the requirements for CISA. You might not meet the CISSP requirements based on what you've posted, and while Sec+ is nice, I think it would do little given your degree and experience. CISA really seems like the right call. CISSP if and when you do meet the requirements is definitely the right call as well.

chanakyajupudi

CISA should be the option you should be looking for. If interested maybe the CEH too. CISSP once you are ready with the eligibility requirements.

HR8886

chanakyajupudi wrote: »

CISA should be the option you should be looking for. If interested maybe the CEH too. CISSP once you are ready with the eligibility requirements.

I'm not sure if i want to go back into Auditing, its too slow paced for me

emerald_octane

You can take the CISSP and become an Associate until you meet the requirement.

ptilsen

HR8886 wrote: »

I'm not sure if i want to go back into Auditing, its too slow paced for me

Then Associate of CISSP, if you don't meet CISSP requirements, is probably your best bet right now.

If you want to get into something more technical, there are plenty of options from there. IMO starting with CISSP makes the most sense. It's really your ticket into security.

HR8886

ptilsen wrote: »

Then Associate of CISSP, if you don't meet CISSP requirements, is probably your best bet right now.

If you want to get into something more technical, there are plenty of options from there. IMO starting with CISSP makes the most sense. It's really your ticket into security.

So i should skip the SSCP and go for the CISSP?

Any idea how long studying time is for CISSP?

ptilsen

I would. SSCP really makes more sense for someone with relatively little experience, a year or so. I don't see it as a logical choice when CISSP is feasible.

Your mileage may vary. I've seen people do it in a few months, and others take a year. I haven't started yet, myself, so I don't have any first-hand experience to share.

HR8886

ptilsen wrote: »

I would. SSCP really makes more sense for someone with relatively little experience, a year or so. I don't see it as a logical choice when CISSP is feasible.

Your mileage may vary. I've seen people do it in a few months, and others take a year. I haven't started yet, myself, so I don't have any first-hand experience to share.

Thanks!

I was considering it but didnt think i could cuz of the experience. I had no idea about the Associate option.

antielvis

What type of security are you looking to get into? There is defensive security, offensive security, application security, etc. If you're looking to be a specialist in securing networks it certainly can't hurt you knowing how to actually hack (CEH). I've did Security+ and I think it's a good solid foundation for anyone looking to understand security.

JDMurray

Also consider all of those resume search engines scanning tens-of-thousands of online resumes looking for the string "Security+", which isn't on your resume, and passing you over for a shot at a first interview.

redworld

There's nothing wrong with starting on Security+ especially since it fulfills the DoD 8570 IAT II and IAM I requirements. At the very least it'll help get you motivated to delve deeper.