renacido wrote: » Not to discourage you from taking this exam, but keep in mind that there are certs more relevant and valuable at this early stage in your career. Non-security specific training experience and certs are also valuable in security.
renacido wrote: » You're not "wrong". My point is this: there is a reason why they require no less than 4 years full time experience for CISSP. It's a management cert. And what's the key qualification for a management position in infosec (or any field)? Experience. Furthermore, CISSP is all knowledge and judgement questions and scenarios where you are making decisions as a Security Manager or CISO. It has technical content but does not test an individual's hands on technical skills and the technical content of the CISSP is more basic than other security certs, therefore if I'm looking for a guy (or gal) who I know can identify intrusions or lead incident response or test for vulnerabilities or identify root cause of an incident or do security engineering work with MCSE/CCIE guys then I'd rather see more technical certs not solely assoc of isc2. Don't get me wrong, I don't see assoc of ISC2 as having no value, just saying that it may not serve you as well in your career as technical certs will because to be honest until you have enough experience to qualify for mid-level management positions it's not very helpful other than demonstrating that you want to be a CISO someday. Just my opinion, good luck with the exam.
renacido wrote: » A good mentor can really smooth your path to success for sure. Networking is important, use the people in the industry who you know, use forums, use Linkedin, ask lots of questions, share your own opinions and experience and you're bound to find one or a few mentors. I'd like to offer you my advice just based on the very little that I've learned about you in this thread. Maybe some food for thought that might be helpful. You have an MS in Computer Security, that alone shows you are committed to the field and that's all the *formal education* you'd need and then some to be the CIO/CISO of a major corporation, so that's awesome you've already knocked that out. You're already working in infosec, though you didn't mention what specifically you're doing. But whatever you decide, the foundation of any career in security should be a solid understanding of networking and servers (datacenter, cloud, virtual, mobile, all of it). You do learn some of this in computer security books and classes but the experience of working on technical problems, understanding how the stuff works in a real environment, this is extremely useful knowledge that we call upon all the time to do our security jobs. Learn as much of this stuff as you can by whatever resources you have at your disposal: on the job, home lab, video courses, books, classroom training, etc. Beyond that, the development paths fork off in somewhat different directions depending on what roles you have or are heading toward. Security Ops, Audit, Assessment and Testing, Forensics, Engineering, or a combination of those. This is where the Assoc of ISC2 is *not as* valuable as something more technical and concentrated. Each of the areas above has focused, highly-technical and/or hands-on exams and certifications for those specific skill sets, whereas the CISSP exam is broad in scope and more about applying knowledge along with professional judgement to shape and manage a security program and processes. Hopefully this helps somewhat, but you seem to be well on your way toward a successful career.
kshahin wrote: » @ myself_hyd I am planing for the CISSP exam and I am looking for study partner to go through the chapter by chapter. I do have CBK ( 4th Edition ), Shon Harris ( AIO -6th ) and MP3 for the Shon Harris Lecture. I am studying CBK now and I will study Shon Harris (AIO - 6 the Edition ) later just to make sure I am not missing any topics. Listening MP3 in the car.... I believe discussing the chapter by chapter will help the catch the topics faster. Thanks Shahin
Hamalp60452 wrote: » Check out CISSP in 3 Weeks. It's available on Amazon Kindle.
