RHCSA + CCNP + Checkpoint.... Good foundation for a Network/Security Consultant?

Levithan · January 2014

Hello everyone!

Just another question (or a few) about what people in the field think.

I'm Currently CCNA+CCNA Security certified. Been trying quite hard to get a job, have had many bites, but still no job yet... So in the meantime I feel that I should continue my education, be able to put something on my resume and say I was doing something during the time that I wasn't working...

I've seen a ton of jobs asking for Networkers with Linux skills, as well as many jobs asking for checkpoint specialists recently. Also it seems that CCNA's are a dime a dozen, so I'm thinking I need to step it up a level in the networking/security area.

I was/am debating just going straight for the CCIE written, since the price of the test is less than the 3 CCNP tests together. I know the lab isn't cheap, but If I could get a good job in the meantime, I would (hopefully) have enough time to save/study up for it.
I guess my question in this area would be, is this a reasonable goal? Has anyone looked for a job/hired someone after the CCIE written, and what are my chances if I take that route? I also saw that they changed the CCIE to v5, I have the v4 official cert guide and have read it a bit, but it's a few months out before the new material comes in, not sure what to do...

After taking the CCNA Security and looking at the job market I really noticed the demand for firewalls other than the ASA. I've specifically seen 5 jobs in the last 2 weeks all asking for Checkpoint specialists, so I'm also thinking this may be something I should try and tackle. Not heard of many people with the CCSA, but I went ahead and got the Security Gateway trial, as well as all their docs for implementing, config, VPNs, ect. I guess I don't have much to ask on this one, other than if many people work with these often, or have done the CCSA...?

Last one. (Thanks if you've read this far! )

I've also worked a little bit with several different servers that run on different linux distros, and seeing how the job market seems to love people with Linux skills, this seems to be one also standing out for me. I've grabbed some training material for the RHCSA and have been thinking about trying to tackle that one as well (I have alot of time on my hands....

). Not sure how many Security/Network Engineers work much with Linux at their job, but I've seen it asked for on enough job ads that it's also stood out for me a bit. Thoughts on this one?

My rough goal is to (hopefully) become a Network/Security consultant in 5 years time. Maybe I'm shooting high (...?) but I was always taught to do so....

Anyone with thoughts, input, criticism, or anything else helpful, are greatly appreciated. I've been lurking around this forum quite a bit and seen alot of great advice, so thanks again folks!

RouteMyPacket · January 2014

I don't even know where to begin. You are a CCNA, how much experience do you have?

CCIE is absolutely, unequivocally absurd and out of the question. Your EXPERIENCE is what companies want, not some piece of paper without any practical knowledge.

CCNA's are a dime a dozen because there are so many paper chasers out there. What isn't a dime a dozen are CCNA's with quality work experience behind them, these are the Engineers who will go on to be CCNP's and even CCIE's

Has anyone been hired because of a CCIE Written? lol Come on now, stop looking for shortcuts. CCIE Written means nothing. You are a CCNP until the moment you get your pass notification on the IE lab.

I think you simply need to step back and refocus. You say you want Security, ok so how is your R/S knowledge? Do you know how a network functions? How packets flow? Everybody wants to be in Security (it sounds cool I guess) but how can you secure that with which you don't even understand?

Nothing wrong with having Checkpoint knowledge, same goes with Palo Alto. I would try to land a job doing anything related to networking. You have to start somewhere and you may very well find Security is not for you, along the way you may find Voice or Wireless or R/S to be the "thing" you just love and get.

It's good to have your CCNA, but you have got to be applying it and learning on the job to retain and expand your knowledge. Let's look at your resume, everyones resume can afford a makeover and I dare say yours needs some tweaks, remember we are selling ourselves with our CV's "Hey, look at me..look what I have done and can do for you and even more..pick me up..woo hooo..over here".

tayro12 · January 2014

I agree with RouteMyPacket, I heard similar words from my last interview on an Network Engineer position. The hiring manager told me that he has an expired CCNA but he can confidently say that his experience alone will beat any applicant having a CCNP and he ended up later telling me that if ever I dont make it to the next round of interviews, to continue to apply on a later time saying that some of his best network engineer's applied several times to get in.

So as a newcomer in the networking field its really best to get one's feet wet on the technology before looking around on what's "HOT" i.e security and focus on the basic of networking which is Routing and Switching.

Though I agree on the aiming high part, but that's a long term goal and there should be focus on the short term goals that is set-up towards the achievement of the long term goal.

HTH

Levithan · January 2014

Thanks for replying guys!

So to clear things up a little....
I have 2 years experience as a Network Engineer with major telecom. I got laid off at the end of '09 (the whole project was sent overseas), jobsearched for a year with no luck, then moved overseas also (long story...). Since then I've worked in Construction and hospitality a bit, but always wanted to get back into the IT field.

I recert my CCNA last year, first time was in '08. Got the CCNA Security about 6 months after, also studied for the VCP in between, but unfortunately the mandatory course is too expensive for me to finish that one. In the meantime I've been reviewing and doing alot of labs, while looking and applying for jobs.

I understand that it looks like I'm looking for a shortcut, I guess I just really want a way to get back into the field, and if it took going for the CCIE to do it, I would. My job as an Network Engineer was the best job I've ever had, was a great time in my life, and I'd really like to be in a similar position again, if not a better one.

So with that said, what do you think? Thanks again for your input!

RouteMyPacket · January 2014

Levithan wrote: »

Thanks for replying guys!

So to clear things up a little....
I have 2 years experience as a Network Engineer with major telecom. I got laid off at the end of '09 (the whole project was sent overseas), jobsearched for a year with no luck, then moved overseas also (long story...). Since then I've worked in Construction and hospitality a bit, but always wanted to get back into the IT field.

I recert my CCNA last year, first time was in '08. Got the CCNA Security about 6 months after, also studied for the VCP in between, but unfortunately the mandatory course is too expensive for me to finish that one. In the meantime I've been reviewing and doing alot of labs, while looking and applying for jobs.

I understand that it looks like I'm looking for a shortcut, I guess I just really want a way to get back into the field, and if it took going for the CCIE to do it, I would. My job as an Network Engineer was the best job I've ever had, was a great time in my life, and I'd really like to be in a similar position again, if not a better one.

So with that said, what do you think? Thanks again for your input!

Again, CCIE can be a long term goal and I mean "long term". CCIE is not something you just say "I think I'll go for that", many have tried and many have failed. The CCIE is for those who eat sleep and breath Cisco technology and these people aren't taking up the CCIE with no experience, these are generally solid Engineers who have put anywhere between 10-20yrs in (hardcore people could be in the field 5yrs or so and nail it). So that's a good thing but you need to take the steps to get there, it's not a race it's a marathon.

What did this "2yrs experience" consist of. Bullet point it out for us because your resume need to reflect what you did and within that it will show what you can potentially do. The only thing I would wonder is why you did not stay in the IT field once that job moved overseas? You surely would be asked this at an interview

It's good to be labbing, it never hurts to lab up scenarios.

wallpaper_01 · January 2014

CCNA to CCIE? Really? I know cost can sometimes be an issue but don't rush it. I have high ambitions like you, but you have to be realistic. Start studying CCNP and applying for jobs. Employers will see your ambition having already got CCNA/Networking Engineer experience and take you on. Finish your CCNP while working and see what happens. You can progress pretty quickly in IT at the right companies.

As for RHCSA, yeah it couldn't hurt to do this. I currently live in an area where there are 0 networking jobs so im studying the basics in most stuff then going to specialise in Networking in the next few years. I'm planning on L+ then maybe RHCSA. I currently work with Linux and it has always interested me. Not sure how useful it is to a networking engineer but it can't hurt to add more skills.

dmoore44 · January 2014

You've mentioned networking and Linux in your post... Honestly, you should probably pick a path (i.e. netadmin or sysadmin) and master it before making the leap to security. Since you're already on the Cisco track, would say focus on getting a netadmin position and gain as much experience as you can there. Then, look for a promotion to a network engineer and gain as much experience as you can tolerate. After a few years of doing that, re-evaluate your desire to go in to security.

The security perspective is a much different one than an admins perspective. As an admin, your function is to make sure a technology is functioning properly (and efficiently in the case of net ops). As an engineer, your goal is to make sure the technology functions, and interoperates with other technologies properly. As a security monkey, your goal morphs to badgering the engineers and admins in to making configuration changes (i.e. "security enhancements") to their kingdoms (and from experience, they don't really like that all that much...)

Levithan · January 2014

So here's the points off my Resume from my Network Engineer position....

If you'd still like me to post my whole resume, let me know. I'll have to do some redacting first....

Thanks again guys!

Worked within ***** project as a Network Designer and Data Test & Acceptance Engineer
Configured, Implemented, and Maintained Cisco devices such as Cisco Router Series 2600, 2800, 2900, 3700, 3800, 7200s, and 3500 series switches
Configured and Troubleshot ISDN BRI/PRI, T1/Frame Relay, and ATM/IMA interfaces
Implemented IP routing protocols such as BGP, EIGRP, OSPF and RIP V2
Implemented HSRP/VRRP for Dual Router Hot Standby configurations ensuring connection redundancy
Designed router site configurations for ***** customers
Maintained logical and physical drawings of router setups with Microsoft Visio
Managed 30-40 customer accounts at the same time, including several fortune 500 companies
Used Microsoft Excel to create and maintain databases containing customer network and IP addressing information

instant000 · January 2014

Try going to meetups in your area.

If your enthusiasm and skills are genuine, you won't be out of work too long.

Hope this helps.

RouteMyPacket · January 2014

Levithan wrote: »

So here's the points off my Resume from my Network Engineer position....

If you'd still like me to post my whole resume, let me know. I'll have to do some redacting first....

Thanks again guys!

Worked within ***** project as a Network Designer and Data Test & Acceptance Engineer
Configured, Implemented, and Maintained Cisco devices such as Cisco Router Series 2600, 2800, 2900, 3700, 3800, 7200s, and 3500 series switches
Configured and Troubleshot ISDN BRI/PRI, T1/Frame Relay, and ATM/IMA interfaces
Implemented IP routing protocols such as BGP, EIGRP, OSPF and RIP V2
Implemented HSRP/VRRP for Dual Router Hot Standby configurations ensuring connection redundancy
Designed router site configurations for ***** customers
Maintained logical and physical drawings of router setups with Microsoft Visio
Managed 30-40 customer accounts at the same time, including several fortune 500 companies
Used Microsoft Excel to create and maintain databases containing customer network and IP addressing information

Not too bad, I like the catch phrases you use "implemented", "managed", "designed".

Now the only thing is, if I were going to do a technical interview with you. I would ask you in depth about routing protocols, troubleshooting scenarios of BRI/PRI's etc. I would ask you specifically how you could provide me redundancy in my data center (then hand you a piece of paper to show me).

Could you show me on paper and in detail how to design a redundant data center?

Reason I say this is because you want to be careful with the word "Design". It's a great thing to be at the point you are literally "designing" solutions. With that said, be honest and careful with that. If you didn't "design" it then use something like "Assisted in the design of bla bla bla"

All in all not bad, I would use more network terms in your bullet points. Tell us what you did, not what you worked with.

 Took a lead design role on the XYZ project. Migrated data center from 6500 catalyst switches to Nexus 7k solution
 Transitioned the data center from 1GB to 10GB and extended the data center fabric through Nexus 2000 FEX's

So something like that. I obviously pulled that out of thin air but you get the idea. If I were to see that on a resume I would immediately be able to see that you have some experience with Nexus and 10GB. That would in turn lead into the technical interview where we expand upon these bullet points.

RHCSA + CCNP + Checkpoint.... Good foundation for a Network/Security Consultant?

Comments