In my current job as a cybersecurity auditor there's no room for promotion. People tend to stay 2 or 3 years, get good experience in all the different business units, and then get promoted out of Internal Audit back out into the company somewhere. I've been in tech for a good long time (UNIX Admin, NOC, Network Planning, etc.), and I want to move into a security organization within my company, eventually.
I have an MSM in Information Systems Security, but it feels completely outdated now (I received it in 200
. That said, given my career goals, I've decided to go back to grad school for Information Assurance. I flirted with WGU a couple of years ago but I didn't enjoy the experience at all, and withdrew. I see plenty of threads complaining about the whole grading process and I feel lucky I gave it a pass.
I went looking for good (online) cybersecurity schools, and came across the 2014 Ponemon Institute's paper on cybersecurity schools. You can find it here:
http://www.ponemon.org/local/upload/file/2014%20Best%20Schools%20Report%20Final%202.pdf.
I ended up choosing Norwich University for a few reasons:
1. It's the #2 school in the US for cybersecurity and is recognized by the NSA and the DHS as a Center for Academic Excellence in Information Assurance education.
2. The capstone case study allows you to work within your own organization and produce something that will be of value to your company.
3. I get a (small) grant for having my CISSP already.
4. The program can be completed in 18 months, 3 six month terms with two classes per term (4 core, 2 concentration)
5. They have a deal with my company for a discount, so after tuition assistance I'll be paying about 10k out of pocket, which is reasonable.
6. I earn CPEs towards maintaining my CISSP.
7. Classes are taught by CISOs from large organizations and not academics only.
8. The Computer Forensic Investigation / Incident Response Team Management concentration sounds hella fun.
I'll be busting my butt for 18 months but I'll be having fun while I do it, I'm pretty sure.
