--Originally published at The Hitchhiker's Guide to information security… according to me!
There are too many bad guys out there waiting for their chance to strike, laughing at the law with their rotten teeth, committing unpunished crimes, running this city with fear. Someone needs to stop this madness, we need heroes who can face their nightmares, embrace the sins of the city and look death right into the eyes in order cleanse the streets of insanity. But who could ever believe that our heroes are here for good… if they don’t have the appropriate CERTIFICATION?
If you want to pursue a career in IT security and information sometimes a school diploma is not enough. You need to fill your uniform with shiny badge because that’s what the recruiters are seeking, but which badge looks better in your chest? Well, it all depends on the path you’re taking, and lucky for you I’ll list 5 options.
Top 5 of security certifications by level.
This is the first top something on my blog. I’m so excited. Here it comes!
Beginners
Enthusiastic people that are still hoping to change the world and think everything possible.
CompTIA Security+: The start of the line. Security+ is a certification that recognizes your technical skills in managing security systems, organizational systems, networks security, cryptography, security risks, security infrastructure and more. It’s said that 2 years working in the network security area are needed in order to take the exam, but are not required.
https://certification.comptia.org/certifications/security
Intermediate
This is for people who have been to war, they know their stuff and know the world is rotten.
Certified Ethical Hacker (CEH): what’s is best that hacking into a computer? Having a paper that says you’re allowed to do it. If you read my post “Mr. Niceguy”, and of course you did, you totally know what a white hat hacker is.
GIAC Security Essentials (GSEC): This is the next step of the Security+ certification. The GSEC recognizes the understanding of information security concepts and terminology beyond the basics. This certification is more focused on people that want to demonstrate that they are fit for a job on the security environment that requires active participation in the tasks assigned. Training and demonstrating previous experience in the area is not required, but it’s recommended.
http://www.giac.org/certification/security-essentials-gsec
Advanced
For people who have seen the world, have abandoned all material binding to this world and are seeking for nirvana.
Certified Information Systems Security Professional (CISSP): now here comes the hardcore stuff. This credential proves that the holder has deep understanding in 8 domains such as: security and risk management, asset security, security engineering, communications and network security, identity and access management, security assessment and testing, security operations, software development security; also, great skills and experience. This is a tough exam and 5 years of full-time experience are need to be proven in order to apply for it. Also, you can apply for concentrations in architecture, engineering and management of systems.
https://www.isc2.org/cissp/default.aspx
Certified Information Security Manager (CISM): the fancy stuff. This credential is for people who want their skills in administrating and managing systems recognized. It also recognizes deep knowledge and advance skills in risk management. This credential is synonym for high quality standards in the information security environment of a company, and, as the previous certificate, 5 years of proven experienced are needed In order to apply for the exam.
Want some more?
Here are some other interesting certification you may want to have a look to.
https://certification.comptia.org/certifications/security
Enlisting for war
If you really want to pursue a career in security information you need to train every day as new threats are constantly being created. Getting the right certification for you according to your path and years of experience will truly help you boost your career.
