CISSP Certification
Gary Nichols
plug-discuss@lists.plug.phoenix.az.us
Tue, 29 Oct 2002 08:40:19 -0700 (MST)
On Tue, 29 Oct 2002, Sundar wrote:
> Thanks George and Gary for your feedback. What do you guys think about
> SSCP?
Again, it depends on WHY you're wanting certification. SSCP is great if
you're responsible for securing systems and performing INFOSEC duties in
general.
If you're taking overall security responsiblity for an entire corporation
(my situation) then the CISSP is the best choice because it focuses on ALL
of the domains. You have to have experience to pass the exam, period. I
don't care what the boot-camp programs are telling you - if you don't have
at least 5 years doing some type of security in one or more of the
domains, you're in for a massive shock when you sit for the exam.
Just going by what you've said so far, it sounds like the SSCP would be a
good starting point for you.
You may also want to explore CISA for the auditing background and
experience.
Gary