Government Security
Network Security Resources

Jump to content

Photo

Security Certifications...


  • Please log in to reply
27 replies to this topic

#1 ArchAngel

ArchAngel

    Private First Class

  • Members
  • 55 posts

Posted 07 February 2007 - 01:06 PM

As the description says... What order should you get security certs in? I have heard all different routes at doing it... starting from the bottom with Security+ then certs in between CCSA, CCSP, getting other certs also such as RHCE... CCNA.... then CISSP...

But here is the thing... Its confusing the crap out of me.. I'm trying to set goals and plan out how I want to approach getting completely into the security field. I am completely intrigued by it, and feel like it IS a good route to go in the IT field.

I know alot of you guys are extremely into this field.... and have seen alot of things, (cant say everything as exploits come out every day.) I know that you guys have seen coworkers take different routes at certing.

What route would you take if you had a chance to do it all over again? (I'm talking all/any certs... not just security...(but eventually leading to it.) even if its a manufacture cert, list it :lol: . Also assume money wasn't a issue. (it is in my case but if it means I have to save up to 3k to take a cert... I will..))

1. CompTIA A+
2.



Thanks,
AA

#2 Glyph

Glyph

    General of the Army

  • GSO Management
  • 1,599 posts

Posted 07 February 2007 - 01:27 PM

Depends on exactly what you want to focus on..
EG. If you plan on working in a MicroSoft shop, don't bother with the Cisco Certs.
Same for if you're going to work in primarily a *nix shop.
If however you plan on working in a Cisco Shop then your path is spelled out by their requirements.
If however you are looking at going into the auditing side of the work investigate SANS certs.
Keep in mind the field of IT Security is as large as there are os's and network equipment vendors.

YMMV..

:ph34r:

#3 soljaofjesus

soljaofjesus

    Private First Class

  • Members
  • 21 posts

Posted 07 February 2007 - 01:41 PM

Depends on exactly what you want to focus on..
EG. If you plan on working in a MicroSoft shop, don't bother with the Cisco Certs.
Same for if you're going to work in primarily a *nix shop.
If however you plan on working in a Cisco Shop then your path is spelled out by their requirements.
If however you are looking at going into the auditing side of the work investigate SANS certs.
Keep in mind the field of IT Security is as large as there are os's and network equipment vendors.

YMMV..

:ph34r:



Do you or anyone have any study material any study material or FREE information that I can use to study for the SANS certification?

#4 ArchAngel

ArchAngel

    Private First Class

  • Members
  • 55 posts

Posted 07 February 2007 - 01:57 PM

sorry forgot to really clarify... I want to go towards *nix

#5 zorin-

zorin-

    Sergeant First Class

  • Sergeant Major
  • 541 posts

Posted 07 February 2007 - 02:55 PM

I'm going to be taking the CEH exam pretty soon; itís when I want to take it so I have all the study materials. The CEH videos are good and kind of interactive and you learn about a lot of different things, the videos I have are mainly done on Redhat and itís a bit basic (I'm on lesson 9). Itís not all about hacking like people think though so read into it more before taking the course. If you want to videos PM me.

I also have lots of Cisco training manuals, videos, PDF's and other Cisco device simulators for the CCNA and other Cisco qualifications. Again, if anyone wants them then PM me.

#6 whiskah

whiskah

    Staff Sergeant

  • Sergeant Major
  • 397 posts

Posted 07 February 2007 - 10:18 PM

Good read http://dmiessler.com...g/infoseccerts/

#7 beardednose

beardednose

    Retired GSO First Lieutenant

  • Sergeant Major
  • 1,916 posts

Posted 08 February 2007 - 03:44 AM

If you want a broad view of security, I'd go CISSP first, assuming you have the experience (see the requirements for CISSP). It forces you to learn areas that you are not familiar with (such as crypto or physical security). And it's not MS or *nix based.
Don't post just a THANKS! Here's why...

Forum Rules you need to know...RuLeS

#8 ArchAngel

ArchAngel

    Private First Class

  • Members
  • 55 posts

Posted 08 February 2007 - 10:27 AM

I have only been in the IT field for aobut 4-5 years (I only have 2 years work experience which is killing me.) But I know very little about security... I can understand most of what is happening when people talk about exploits... But I want to know more, and I just want to know where I should start.

#9 WaKkO

WaKkO

    Private First Class

  • Members
  • 27 posts

Posted 17 April 2007 - 04:40 AM

These are my prefered ones in the order I would go for them:
- CISSP
- CISA
- CEH
- GCIH
Wouter Veugelen | Security Consultant
http://www.voipsec.eu/

#10 rlastinger

rlastinger

    Sergeant

  • Members
  • 220 posts

Posted 17 April 2007 - 05:53 AM

- CISSP
- CISA
- CEH
- GCIH

Those certs are good. You could also look into IAM, IEM and maybe CPTS. Some uni's have network security focused programs as well.

If you want to look into nix certs. RHCE/A is good and Red Hat I believe also has RHCSS (Red Hat Certified Security Specialist), if you wanted to go for that.

As far as nix and security go though, I think most of what's listed in this forum is what people are looking for besides experience. It definitely helps. A friend of mine took the CISSP and had never been in security, just a general interest, and a month after passing got a job in security for a very large international firm.

Can anyone think of any others?

Another thought for you, ChrisG pointed out somewhere is that there are also some Unis offering programs with a focus in security where you can get DoD scholarships as long as you promise like a year of service to government after graduation or something like that. Ability to pass a secret I think is a requirement. I'm not positive on that one though. I'd look into it a bit more if you're interested in that though.

Anyone else know anything about this? If not, I'll email ChrisG and try to track it down if there's interest.

I might have some pdfs of some stuff, but they might be a bit outdated. I'll look when I get home if you're interested though.

#11 ypgowda

ypgowda

    Private

  • Members
  • 4 posts

Posted 31 May 2007 - 08:37 PM

anybody have 70-620 exact dumps. please let me know my mail id is idiot@imafuktard.com

#12 KingKrool

KingKrool

    Corporal

  • Members
  • 182 posts

Posted 01 June 2007 - 07:15 PM

Definitely there are Security programs as suggested by rlastinger above.., as one at Georgia Tech. for MS in Information Security. They basically have a broad approach, dealing with computer and information sciences with specializations in Information Security..

John Madisaon university also offers distance learning program MS in InfoSec..

#13 Juno

Juno

    Specialist

  • Sergeant Major
  • 142 posts

Posted 04 June 2007 - 05:56 AM

Following up on rlastinger's comment, the NSA has a program that will pay for your college fees and even give you money to spend, but you have to work your summers at their Washington, DC office as an intern and also promise to work for them for an amount equivalent or greater than the amount of time they paid for your college. Of course, this also depends on the ability to gain a security clearance, of which I've heard 20% of applicants fail regardless due to the battery of tests you're given, which has normally been attributed to nerves during the interview process. Interesting to note, though, that no spy has ever been caught by a polygraph.

If you want more information, visit their website at hxxp://nsa.gov. They'll have all the details, and if you're chosen, they'll get in touch with you - if you don't get called, that means your not in.

Final note: If you do apply for this program or position in the NSA, I wouldn't recommend telling anyone that you're trying to apply. Reason being, if you do get the job, you won't be able to tell anyone that you got it.
Hacking The Everyday - My blog blabberings about life, computer security, and everything in-between.
Don't forget to Read the Rules before you post!

#14 Fluid

Fluid

    Private

  • Members
  • 6 posts

Posted 29 June 2007 - 06:08 AM

Well im 18 years old and will be 19 in september thats when im starting my CCNA course at college! Then afterwards im hoping to do the following:

CCNA
Comptia Security+
Comptia Network+
CCSP
CCIE Security

Can anyone tell me any other Security related certificates which are available and well recognised? Also would you have to retake them every 3 years like the cisco ones?

Thank you and sorry for hijacking your thread i can make a new one if you want!

#15 genxweb

genxweb

    Corporal

  • Members
  • 191 posts

Posted 29 June 2007 - 10:04 AM

I currently have:

CCSA (checkpoint)
TICSA (truesecure) <--- not really around any more
LCA (Linux Certified Admin) <--- Now LCPI
CSI (Sidewinder firewall)
CISSP
GCIH

I missed the CISA by 4 points.

I plan to take the The IDS and Forensics courses through SANS. I also currently teach the GCIH and soon will be teaching the Google hacking stay sharp class.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users