IT Security
Home > IT Answers > Security > IT Security
Davemd
10 pts.
0
Q:
IT Security
Security management, Networking, Network security, Security, Microsoft Windows, Desktop security, Career development, Security Program Management, Application security, Platform Security, Certifications, Staffing, IT careers, Windows Security, Securitychannel, CISSP, MCSE, Careers in networking, Certification and specializations, CISSP certification, Networking certifications, MCSA, Security certifications, Career in Information Security
With all the talk about security certifications and working in IT security being hot right now and in the future, I was wondering if it would make more sense to try and get the Security + certification before trying to get another IT certification such as the MCSA (Microsoft Certified Systems Administrator)? I’ve heard that most certifications (other than security) don’t mean that much anymore to employers, and that skills now beat having certifications. Also, I noticed for many other security certifications such as the CISSP, the requirements to take the test are very strict, in that you need to have 5 years of experience working in security. How does one get that experience if they’ve never specifically worked in security? What if someone was more of an IT Generalist, or IT jack-of-all-trades where they worked? I think I want to head in the security direction, but how do I do it? For the past couple of years, I’ve worked for a small firm where I am the only one that does all the IT stuff, and security was really never an everyday issue. My job title probably ties more closely to an IT Administrator or Systems Administrator. I appreciate any help and feedback. Thanks very much.
ASKED: Jun 16 2008  2:47 PM GMT
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
RELATED QUESTIONS
0
Labnuke99
26245 pts.
0
A:
 RATE THIS ANSWER
0
Click to Vote:
  •   0
  •  0
  • AddThis Social Bookmark Button
I have both the Security+ & Certified Ethical Hacker certifications. I think it is valuable to have these types of non-vendor specific certs as well as the CISSP. These are kind of like moving from an associates degree to bachelor's and then to a master's degree. They can and do all build on each other and the maturity of knowledge increases as you move through the path. Being a generalist is not a bad thing but you do need to focus on some specialty that is of value to the organization for which you work. You are on the path that I was over 10 years ago. Just keep moving forward and you will do well!
Last Answered: Jun 17 2008  1:33 PM GMT by Labnuke99   26245 pts.
  •   
0
0
RSS - Discussions Help
Discuss This Answer:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _



_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

Srkey   40 pts.  |   Jun 18 2008  9:11AM GMT

If You want to be Security guy first You have to know what You want to secure, OS or network or ….. Whatever You decide You should be first expert in that field before You start “securing”, eg if u want to be networt security expert get expertise from seting up, maintaining and documenting networks and various protocols and technologies related to networks, get certification from that area and then start “security story”. Why? If u want to know how your network or OS could be compromised u have to know it’s architecture, common and possible configurations, how it is often used and the best way for getting that knowledge is to become engineer and administrator of particular enviroment first. Cheers!

 
0