Search
-
Re: Alphabet soup of protocols and hashing algorithms
Yes, the acronyms can get overwhelming. I wouldn't worry too much about whether an acronym is a protocol or an algorithm though. In general, a protocol is a formally defined set of rules while an algorithm is typically a mathematical formula or set of steps. Within the context of Security+, protocols normally refer to… -
Re: NIST 800-53 and classes of controls...
NIST SP 800-53 Rev. 4, Appendix F, Page F-3: "Because many security controls within the security control families in Appendix F have variouscombinations of management, operational, and technical properties, the specific class designationshave been removed from the security control families. Organizations may still find it… -
Re: Should a resume be one page only?
Well, entire resume is more than 2 pages. For education/certification section I have (this is just for example) and I list up to high school due to honor: Education Graduate university name and year * Graduate degree title and honor such as cum laude or valedictorian Undergraduate university name and year * Undergraduate… -
Re: How was the CISM Today
I believe there's 2 types of password attack here; a dictionary attack and a brute-force attack. The dictionary attack uses a pre-compiled list while brute-force attempts all possible combination with the advance ones capable of making assumptions as well. With a dictionary attack, the effectiveness of it relies heavily on… -
Re: A word of caution about CEH V8/V9
Yes, in my Security Manager role, I have written SOP/Security guides. In fact, shameful as it is, they didn't have anything other than some notes from the vendors security manual. We just passed an audit by KPMG (previously failed the last two) because I documented and wrote them. This audit was an eye opener for me (for… -
Re: Why use job related experience as a perquisite for exams?
Mostly security certifications. For example EC-council, SSCP, CISSP. I think I could pass CISSP within a year. Most security certification is more terminology than technical. CCIE is a different story. CCIE leans more into mastering their products, and it’s not as general as security certification. The bad thing about… -
Re: More advice and tips from over 35+ years of working in I.T.
Just my initial thought as I was reading along...I agree with the sentiment that if I could "just" be an endpoint engineer/technician and be happy with that salary level, I would. You can be a damned good person with focus. From a security slant, I'll usually take an admin or endpoint technician who has that security geek… -
Re: Wilmington university (MA in cybersecurity) or take certifications? Need help to decide
A degree will certainly hold more value for a longer period of time than certificates. Why do you want to go into cyber security? Have you actually researched various positions and their responsibilities in the cyber security field? What was your criteria for selecting Wilmington University and what others did you… -
Re: How much pay rise is appropriate for 1st year ?
- Accolades and accomplishments We work as a team so. not too sure how can someone stand out in that . Professional education I have Ethical Hacking & Countermeasure Degree and others came as apprentice and worked their way up but I got put straight in that team because of my Degree. Professionalism in what sense? Growth… -
Re: New Network+ exam coming in December? N10-005
The best way to answer this question is to look at the objectives of the two exams (N10-004 and N10-005) which you can get at CompTIA's site: CompTIA Network+ Certification. There are a lot of simularities with some of the objectives reorgnized (five domains instead of six), and some new content. The OSI model is at the…
>28689 results