Re: CISSP-ISSMP

Hi,

So having the cert doesn't
make you good, and doesn't prove to anyone that you have experience or

I think the problem is the cause and effect. Having a cert does not make you good. But being good should be able to get you a cert provided that what the cert tests is valid for application in the industry.

And you can't generalize on certifications as being all the same. Just to throw this out there but have you looked at the ISECOM certifications? With this certification, ISECOM has shown itself to be a lot different- with tests based on applied ability and resourcefulness rather than just knowledge alone. For example, both the Professional Security Tester (OPST) and Professional Security Analyst (OPSA) certification exams are open book exams because knowledge alone will not help you pass and in the real world, the ability to use reference materials properly, including the internet, are an important part of security work. Now these certs are not for everyone but they do prove a level of competence in having proper analysis skills or understanding the security of interactions at a low level (see www.opsa.org and www.opst.org for more info). I know a lot of companies who use the certification for vetting existing employees and new hires as to being able to hit the ground running upon hiring, especially if the work experience is small or questionable.

Sincerely,
-pete.

------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security? Why not go with the #1 solution - Cenzic, the only one to win the Analyst's Choice Award from eWeek. As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/news_events/wpappsec.php And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request@xxxxxxxxxx for details.
------------------------------------------------------------------------------

Relevant Pages

  • Re: Hacker Stories, Certs, vs Projects - Was Re: Technitium MAC Address Changer
    ... and you meet with the technical lead of the group, this certification ... don't have any security certs or experience in the area. ... Download FREE whitepaper on how a managed service ... Download FREE whitepaper on how a managed service can ...
    (Pen-Test)
  • RE: CISSP-ISSMP
    ... they did not need a cert to get the same job you ... security attributes if that is the test bank you were lucky enough to ... You have an option to go with a managed service (Cenzic ... FREE whitepaper on how a managed service can help you: ...
    (Pen-Test)
  • RE: CISSP-ISSMP
    ... Luckily the school also teaches Security++, and he's good with XP so he switches to that instead, and uses a cheat sheet to pass. ... it's normal to see a test king poking out from the study guide of a lot of students in certification classes. ... Download FREE whitepaper on how a managed service ...
    (Pen-Test)
  • RE: Hacker Stories, Certs, vs Projects - Was Re: Technitium MAC Address Changer
    ... don't have any security certs or experience in the area. ... certification as per most. ... Download FREE whitepaper on how a managed service ... Download FREE whitepaper on how a managed service can ...
    (Pen-Test)
  • Re: Security Certifications
    ... I always thought extra points for the exam and cert. ... > changes to the GIAC certs. ... >> I just finished my master's degree in Information Security from ... >> certification from CompTIA. ...
    (Security-Basics)