dynamik wrote: » Good luck on the CISSP; it's 1000 times worse
Paul Boz wrote: » You thinking about any more SANS certs in the future?
docrice wrote: » This is one of the more important exams in my certification plans this year. I spent the past month working on this, first with the OnDemand course (I took a week off from work just to go through it) and then the next few weeks parsing the books, taking notes, and reviewing the areas I was weak in. No doubt this is a solid course. I will say however that from a practical perspective I think my money would have been better spent on something more focused like the GCIA, but cementing foundations is a necessity. Otherwise, the bulk of this course was review for me since I have experience with most of the concepts and almost all the tools reviewed. For those who haven't had at least a few years of experience with both Windows AD networking and Unix, the sheer breadth of material can be overwhelming. When people talk about the number of pages in the bound course material (in my case, six books at roughly 250 - 300 pages each, plus lab work), they're not kidding. No wonder why they give you four months to complete your certification attempt. And this is coverage that I feel is still relatively high level. The test that I took today was pretty close to the practice exam I tried last week. I hate exams though - I'm not a morning person, always have that "exam-twitch" and nervous feeling in my stomach, and this causes me to become trigger happy. There's an on-screen timer staring at you and I need to get a handle on the psychological factor. Of all the questions I missed, the vast majority were during the first few dozen when I was warming up into the test session (and a few were the kind I shouldn't have missed but did because I should read the questions more carefully). Overall, I finished in just under a couple of hours at 93.33% and I only skipped a couple of questions for later review. Not quite as high of a score as I wanted (I mean, it's open book / open notes after all), but a pass is a pass. I will say that if I did not have access to the course materials, my score would have fared far worse. CompTIA's Security+ is a good introduction to GSEC, but it comes nowhere near close to the level of depth and technical coverage. I actually learned some new things (like reading hex in a trace and pinpointing the specific values in field headers, for example), some of which I should have learned a long time ago. This in itself made the course worth it for me. I think I'll go for the practical later on this year, after my CISSP attempt. For now, I need a couple of weeks off from studying and give myself a chance to deflate.
Paul Boz wrote: » I'd recommend either the GCIA or GCFW. The courses are very similar but have their own subtle differences. If you're a firewall guy go with the FW. If you're more intrusion analysis go with the IA. Otherwise the foundation material is the same. The GCFW mentions all of the GCIA subjects but in many cases to a lesser degree.
SephStorm wrote: » So in your opinion, for someone about to take Sec+, and no previous experience outside of user level security support, the GSEC is more valuable? Or a specialty, such as GCIA, GCIH, etc?
docrice wrote: » Oh, great. Juuuuust great... I'm really not looking forward to this one. I have three slightly-older references to read through: my Global Knowledge CISSP Prep Course material from a few years back, the official CBK from a few years ago, and Shon Harris' fourth edition. I also picked up an Exam Cram for practice questions.
docrice wrote: » I'm definitely thinking about the GCIA and maybe the GCFW, GPEN, and GCIH. I really want to do the GCIA though. Maybe Q1 next year when the funds permit. The 558 course (Network Forensics) sounds really cool, but they don't offer a self-study version since I think it's new and I really don't want to incur travel costs. GAWN 617 (Wireless Ethical Hacking, Penetration Testing, and Defenses) sounds awesome as well, but then I start thinking about how much all the re-certifications are going to cost, even if they're discounted. I might just do the OSWP for now...
Paul Boz wrote: » Windows gave me the worst time on the gsec. It was like a mighty kick to the nuts after spending my pro career doing 100% networking. Using windows every day does not make you a sysadmin. I actually just mentioned in my gcia thread the fact that I'm cramming MS protocols right now.
Paul Boz wrote: » Man the Unix questions were wiffle balls. Dynamik can attest to my disdain for Unix (because I'm stubborn) and I didn't have to reference the books for one single question. I'm going to have to seriously get proficient with Unix and Windows administration for the GSE.
dynamik wrote: » Multiple times per week, I hear something to the affect of, "Linux is free because it sucks. No one would pay for it." He lives in a sad and lonely world...
docrice wrote: » Is listing this on a resume just filler if I'm not applying for DoD-ish positions?
Not4TJM wrote: » I just finished GSEC 401. If I am trying to get into the cyber world and don't have daily access to FW/Intrusion tools. What order should I take the following SANS certs? GCIA, GCIH, GCFW, GPEN? Any help will be greatly appreciated since I got management to pay for the SANS OnDemand Option 2 (4 long courses). Thanks
dynamik wrote: » It really comes down to what you want to do. GIAC provides fairly detailed course descriptions and day-by-day breakdown of what the course covers. Assuming you know what you want to do (which may be your hold-up ), you shouldn't have any trouble making a decision. There's going to be significant overlap between the GCFW and GCIA as well as between the GCIH and GPEN.
Not4TJM wrote: » After GCIA, then GCIH, GCFW or GCED (anyone done this yet?). I am going to keep taking as many as long as Uncle SAM will keep paying! Thanks Not4TJM
