RE: question about CISSP experience requirements

You can get the associate of CISSP which does not require any
experience.

https://www.isc2.org/cgi-bin/content.cgi?category=96


-----Original Message-----
From: Monroe, Bruce [mailto:bruce.monroe@xxxxxxxxx]
Sent: Friday, August 04, 2006 6:48 PM
To: security-basics@xxxxxxxxxxxxxxxxx
Subject: RE: question about CISSP experience requirements

A CISSP has to vouch for the experience requirements. If a certified
CISSP vouches for the experience requirements when you don't actually
have them that is a ethics violation...and a problem in itself that
could result in issues with their own cert. I was audited by ISC2 when I
got my CISSP a some years back so there is some checking done. From my
experience they don't check everyone, but they do check on a percentage
from every group taking the test. My recommendation would be to get the
experience and not try the get around the system. There are plenty of
other security related certificaitons you can get in the interim, and
the experience will stand you in good stead regardless. My 2 cents...

Regards,
Bruce

Note - the opinions expressed are my own and may not reflect those of my
employer.

-----Original Message-----
From: e.m.baechle@xxxxxxxx [mailto:e.m.baechle@xxxxxxxx]
Sent: Friday, August 04, 2006 7:01 AM
To: security-basics@xxxxxxxxxxxxxxxxx
Subject: Re: question about CISSP experience requirements

Kurt,


You raise a good question. My opinion is that the CISSP designation
should specifically identify security experience. However, my opinion
is likely very far off from reality. I've seen quite a few people
achieve CISSP status from passing a test, with no more experience on
their resume than 5 years of changing backup tapes. Suddenly they're a
"security expert" with field experience.


The CISSP certification itself is the "gold standard" however my
observations have been that a lot of underqualified people are achiving
it. Much the same way that $$$ drove the MCSE program to keeping a low
passing score. Again, in my observation, I think you could achieve the
CISSP designation if you had someone willing to attest to you having
full-time security responsibility.


Sincerely,


Eric B.



------------------------------------------------------------------------
---
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic
Excellence
in Information Security. Our program offers unparalleled Infosec
management
education and the case study affords you unmatched consulting
experience.
Using interactive e-Learning technology, you can earn this esteemed
degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---

------------------------------------------------------------------------
---
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic
Excellence
in Information Security. Our program offers unparalleled Infosec
management
education and the case study affords you unmatched consulting
experience.
Using interactive e-Learning technology, you can earn this esteemed
degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---


---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Relevant Pages

  • RE: Security Exam Preparations
    ... I am just starting to get back into podcasting, ... episode of my cissp study guide podcast at www.securityalpha.com. ... Subject: Security Exam Preparations ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ...
    (Security-Basics)
  • Re: CISSP Question
    ... Have a minimum of four years of direct full-time security professional ... You don't have to be affiliated with an organization to take the CISSP ... ISACA does have a standard that is used in many places. ...
    (Security-Basics)
  • RE: CISSP Question
    ... 2 Market Street Sydney NSW 2000 ... Subject: CISSP Question ... I am working VERY hard now to get my Masters in Information Systems Security as I am in a dead-end job as a Paralegal. ... To qualify for CISSP, you should have at least four years of experience in one ...
    (Security-Basics)
  • RE: Hacker Stories, Certs, vs Projects - Was Re: Technitium MAC Address Changer v3.1 (FREEWARE)
    ... you do not need 6 years of "security" work you only need to have ... you do not need to have a CISSP vouch for your experience. ... Credentials can only be looked at to strengthen the credibility of a ... You have an option to go with a managed service (Cenzic ...
    (Pen-Test)
  • RE: Hacker Stories, Certs, vs Projects - Was Re: Technitium MAC Address Changer v3.1 (FREEWARE)
    ... general security credential. ... I understand that a CISSP can tell me that ... Credentials can only be looked at to strengthen the credibility of a ... Download FREE whitepaper on how a managed service ...
    (Pen-Test)