Options
IT Security Certification..
kamranss_20
Member Posts: 6 ■□□□□□□□□□
I am working in IT Field have almost SIX (6) years, working on the Management part Like Network and Server Administration including overall Management of IT (Purchasing, Documentation, Coordination etc.)
Have done MCITP – EA, ITIL v3 and MS Hyper-V certification.
I am now looking to move towards IT Security side but little confuse about selecting the right certification
One of my friend from IT Security suggested me to go for CISM or CEH.
Any one please guide which certification is good for IT Security.
Thanks
Have done MCITP – EA, ITIL v3 and MS Hyper-V certification.
I am now looking to move towards IT Security side but little confuse about selecting the right certification
One of my friend from IT Security suggested me to go for CISM or CEH.
Any one please guide which certification is good for IT Security.
Thanks
Comments
-
Options
docrice
Member Posts: 1,706 ■■■■■■■■■■
Depends on what area of IT security you wish to further yourself into. There's a wide array, and it also depends on whether you want to be more leadership/governance or technical.
The CEH is not highly-regarded among many security professionals.Hopefully-useful stuff I've written: http://kimiushida.com/bitsandpieces/articles/ -
Options
636-555-3226
Member Posts: 975 ■■■■■□□□□□
If you want to go into management then CISSP, CISM, CRISC, CISA (all have specific experience requirements that you may not meet)
If you want to go into the operations side, then you have many options. For a generic list of categories you can branch into then I recommend looking at the course list at SANS - https://www.sans.org/courses - you don't have to take a SANS course, but they have about the best list of topics all in one place to help you choose what path you want to take. -
Optionskamranss_20
Member Posts: 6 ■□□□□□□□□□
Dear both, Thanks for reply.
I am thinking for doing CISM as said currently I don't have experience required for this certification. I believe can still go and give the exam, is there any one with CISM certification can guide? -
OptionsMike7
Member Posts: 1,107 ■■■■□□□□□□
@kamranss_20kamranss_20 wrote: »I am thinking for doing CISM as said currently I don't have experience required for this certification. I believe can still go and give the exam, is there any one with CISM certification can guide?
CISM is a paper based exam that is conducted every June, Sep and December.
Sign up as a member at https://www.isaca.org, that will allow you to purchase exam resources at a discount from https://www.isaca.org/bookstore/Pages/CISM-Exam-Resources.aspx
The main reading materials are the CISM Review Manual 2015 and QAE database subscription.
Check the ISACA Forums for details; most find ISACA material to be.. ZZZZ....
You can try the self assessment at CISM Self-Assessment Exam to get a feel of what it is like.
You may want to try Security+; this is an entry level cert that will give you a taste of IT security. With the foundation knowledge, move to higher level certs such as CEH, CASP, CISSP, GCIH. If you are in US, these certs will be useful because of DoD 8570kamranss_20 wrote: »I am now looking to move towards IT Security side but little confuse about selecting the right certification -
OptionsChinook
Member Posts: 206
@OP. I would start with Security+ as a good foundation on security. The CEH is often maligned on this forum, but it's an entry level penetration testing exam. It'll teach you the basics of "Google-fu", Metasploit, etc. It's a good certification to become a vulnerability tester.
Security is often viewed as a single realm. It's not. There is defensive security, offensive security and security management. You can also focus on virus & malware investigation, etc. And the computer forensics is another path (and it's very cool). EC Council does have some interesting certifications beyond CEH but they're expensive. Nothing stopping you from reading the books, getting the job, then writing the tests.
