[inbox] Re: [Full-Disclosure] Training & Certifications

[Curt Purdy]

Harlan Carvey wrote:
> With that said, the most notable Security
> > cert would have to be CISSP.
>
> The CISSP may be useful for Robert's upper-level
> folks, but it's really more of a management level
> cert.

Agreed, the CISSP is wide and shallow and management-oriented, the SANS GIAC
certs are narrow and deep and engineering-oriented, although they do offer a
management-oriented one also. The GSEC that I have is the widest and still
fairly deep cert they offer.  FYI, of the two, I found the CISSP much easier
to pass.  I only put it up front because it seems to be more respected,
being the oldest of the security certs and now requiring a bachelors degree
as a pre-requisite.

Curt Purdy CISSP, GSEC, MCSE+I, CNE, CCDA
Information Security Engineer
DP Solutions

----------------------------------------

If you spend more on coffee than on IT security, you will be hacked.
What's more, you deserve to be hacked.
-- White House cybersecurity adviser Richard Clarke