1.
Can someone help me in my attempt to attain a certification in Network Security?
2.
Is CISSP the highest security certification out there?
3.
What are the best material out there to help in the preparation? Books? or tapes? or video? or trainig centers?
4.
Any online training or reasonable training in terms of cost out there (NJ/PA/NY)?
5.
How many tests are involved here?
6.
Cost per test?
7.
Any hints to help will do. Thanks.
Thanks.
Report this message for abuse of Board Rules.
|
|
|
I'll try to answer these as best I can.
1. Can someone help me in my attempt to attain a certification in Network Security?
This board is a decent place to look for help. The people here are pretty friendly and willing to answer questions.
2. Is CISSP the highest security certification out there?
I don't think it would be right to call the CISSP the highest security cert. It is well respected and is considered an advanced certification but there are others that are also highly considered.
3. What are the best material out there to help in the preparation? Books? or tapes? or video? or trainig centers?
I used a combination of books, audio cds, and videos. I highly recommend the CBT Nuggets videos. They helped me quite a bit. I also used the books "CISSP for Dummies" and "The CISSP Prep Guide".
4.Any online training or reasonable training in terms of cost out there (NJ/PA/NY)?
I have never been a big fan of online training but a Google search of "CISSP Training " will turn up tons of hits. Unfortunately some of it will be very good and some of it will be terrible.
5.How many tests are involved here?
You only have to pass one test but you will need to prove security experience.
6. Cost per test?
The test costs $450.
7.Any hints to help will do. Thanks.
When I studied for the exam I used a ton of notecards. Any question I could find on the web I converted into a notecard. I ended up with a stack of ~1700 cards. Whenever I had any free time I would grab a stack and go over them until I understood why the answers were what they were. I would also recommend checking out www.cccure.org. It is a good site and has alot of good CISSP prep questions.
Good Luck
Rob Schmidt
CISSP, CNA, Linux+, MCSE (NT4+2K)
rschmidt1300@yahoo.com
Report this message for abuse of Board Rules.
|
|
|
Hi Rob,
thanks a lot for your time, and I hope you can touch briefly on these follow ups:
-----------------------------------------------------------------------------
2. Is CISSP the highest security certification out there?
I don't think it would be right to call the CISSP the highest security cert. It is well respected and is considered an advanced certification but there are others that are also highly considered.
>>> I happen to have an advanced degree in IS and I am basically trying to add some job oriented certifications, so I believe I have the theorotical background to hop into the appropraite certification program. As a result, I would like to know the highest options available to me. If CISSP is not the highest security cert out there, what are the competing certs?
3. What are the best material out there to help in the preparation? Books? or tapes? or video? or trainig centers?
I used a combination of books, audio cds, and videos. I highly recommend the CBT Nuggets videos. They helped me quite a bit. I also used the books "CISSP for Dummies" and "The CISSP Prep Guide".
>>>If I decide to go for the CISSP, I will check into these books and video. The Dummies books are usually available at Barnes & Nobles, would you happen to have the ISBN for "The CISSP Prep Guide"? Any identifications for the videos, or, a Website to get it. i.e. like ISBN?
4.Any online training or reasonable training in terms of cost out there (NJ/PA/NY)?
I have never been a big fan of online training but a Google search of "CISSP Training " will turn up tons of hits. Unfortunately some of it will be very good and some of it will be terrible.
>>>Did you go through this without any classes? Just with the vedeo and books? If so, about how long did you take to cover the material before the test?
6. Cost per test?
The test costs $450.
>>> wow! very expensive, so if you have to take it two times that will be about $1000 wow!
7. From your experience, do you really think this certification greatly improves ones chances of getting a job?
-----------------------------------------------------------------------------
Thanks .
Report this message for abuse of Board Rules.
|
|
|
1. Lots of places to help on the CISSP. www.cccure.org, www.cissp.com, and www.isc2.org are good starting places.
2. There is a not a "highest" security certification though it is well respected. SANS, ISACA, etc all offer quality ceritifcations.
3. I did self-study and used the Shon Harris and Krutz books. For practice exams I used SRV which were helpful.
4. Like the other poster stated, use Google.
5. Only one test and there are limited locations to take it. I had to travel out of state since the one local was cancelled at the last moment.
6. This is not a cheap exam. The cost for it has increased to $499 or $599 depending on how much in advance you sign up for it.
7. Know all 10 domains well and expect some poorly phrased questions. The amount of questions that you will see per domain may not equate to the amount of material covered for that domain.
While learning theory is great I do recommend matching it up with technical security certifications so you know how to implement it. I did that it and it helped on this particular certification path.
Cheers.
Report this message for abuse of Board Rules.
|
|
|
If you do not have experience then you cannot get the CISSP. You can go the Associates route and pass the CISSP but you will not be a CISSP.
Do you have any IT/INFOSEC experience? If you do not, then take Security+ and focus on getting real-world experience. Then get certified on what you are doing. For example, if you run a Windows network get the MCSE: Security or do the Windows track for SANS. If you maintain a Cisco network, then get the CCSP. Once you get that under your belt, move on to higher level INFOSEC certifications.
Higher level INFOSEC certifications are not cheap and do not come easy. They are that was for a reason.
Never buy a technical book in a book store. It is a waste of money. Visit www.bookpool.com or www.ebay.com. No need to waste money unless you want to.
I have to cover the cost of all training and certifications myself so anything I can do to save money is a good thing. I read books and resources on the Internet, relied upon hands on experience as well as talking to co-workers for areas that I was weak on. I passed the SSCP and CISSP the first go around.
Do not rely upon a certification to get you a job. It does not matter what the certification is. If you want a better chance at getting a job 1)know your stuff, 2) have experience and 3) get the appropriate certification(s).
There are lots of INFOSEC certifications out there. Some are good and others are garbage. There are technical ones and general ones. Check out www.csoonline.com/read/100702/certifiable.html.
Report this message for abuse of Board Rules.
|
|
|
2. >>> I happen to have an advanced degree in IS and I am basically trying to add some job oriented certifications, so I believe I have the theorotical background to hop into the appropraite certification program. As a result, I would like to know the highest options available to me. If CISSP is not the highest security cert out there, what are the competing certs?
Its not really a matter of being the highest security cert. The certs that are out there are targeted for different career paths. I chose the CISSP because it is a very well respected general purpose security cert. I am hoping it will mesh well with my choice to enter management and leave the techie work behind. commoner listed some of the other available certs in his reply.
3. >>>If I decide to go for the CISSP, I will check into these books and video. The Dummies books are usually available at Barnes & Nobles, would you happen to have the ISBN for "The CISSP Prep Guide"? Any identifications for the videos, or, a Website to get it. i.e. like ISBN?
You can get the ISBN for just about any book at www.amazon.com. You can order the CBT Nuggets videos at www.cbtnuggets.com. The aren't cheap but I think they are definately worth it. Thankfully the client I am working at paid for them.
4. >>>Did you go through this without any classes? Just with the vedeo and books? If so, about how long did you take to cover the material before the test?
I didn't take any classes specifically for the CISSP but I took Windows security classes in the past. I also had 7 years of IT security experience. When I decided to sit the CISSP exam I found that it was being offered in Cleveland in six weeks. To keep the costs down I wanted to take it locally so I studied hard for six weeks. I almost forgot what my wife and kids looked like. Most of the people I have talked to studied for between 3 and 6 months.
6. >>> wow! very expensive, so if you have to take it two times that will be about $1000 wow!
I think that when you factor in books and videos and travel to take the test it will end up being more like $1000 for your first try. If you take a bootcamp or extended training it can cost significantly more.
7. From your experience, do you really think this certification greatly improves ones chances of getting a job?
Definately. Since I have earned the CISSP I have been contacted by a number of recruiters (unsolicited) asking me to interview for positions that required the CISSP. Thankfully the contract where I am was extended so I am not currently looking but I think the cert (backed by my experience) will be a big help in securing my next position.
Rob Schmidt
CISSP, CNA, Linux+, MCSE (NT4 and 2K)
rschmidt1300@yahoo.com
Report this message for abuse of Board Rules.
|
Thanks again,
but why do you refer to others as technical and CISSP "non-technical"?
Which ones are you refering to as technical?
I am A+ certified, MCT,CNE, and CNI -- are there what you refer to as technical? And if so, how different is the CISSP, and whya is it "non-technical"?
After over 10 years of field experience, I left the market to teach after 911 (about 3 years) and I want to get back in the field but it does not appear to be easy; and that is why I am considering boosting myself up with some addtional certificaion.
How differnt is CISSP from the SANS...?
I look forward the update.
Thanks.
Report this message for abuse of Board Rules.
|
The CISSP covers theory. It does not cover specifics such as how to configure a PIX firewall or how to design and implement building security. This is why I do not classify the CISSP as a technical certification. To me technical means you know how to implement something.
SANS has technical certifications that cover hardening Windows/UNIX, forensics, etc. At $800 a pop (no training) SANS certifications are not cheap. They are very good though and for some may be well worth persuing.
For most people, getting a technical certification will serve them well. Once they get quite a bit of hands-on experience, then they should consider the CISSP, CISA, CISM, etc.
Report this message for abuse of Board Rules.
|
| |  | My Watched Boards |  |
| My Favorite Message Boards | | Login to view your watched discussion boards |
|
| Most Active Boards | |
| Find a Board | |
| |
