Hi Guys,
I have completed a degree in computer science and worked my way up through the ranks from helpdesk to 3rd line support. I have passed Security+ and other Cisco and Microsoft certifications although I'm now thinking of getting out of the technical game but unsure of what roles involving security are available! I'm not in a rush to get out of the technical role and looking to complete a few certs that will allow me to change over. I was thinking that the MCSA: Sec, MCSE: Sec & CCSA/CCSP are the big ones in technical security, and i should now be looking CEH, (ISC)2 and possibly MSC: Infosec. Really feel that i need some guidance in relation to this in respect to Recognition, time it takes to study, cost, prerequisites, required training programs etc.

Regards,
James

TBH im not overly sure as haven't had much experience in what's outside the IT support roles, what kinda certs would we be looking at in each of these areas?

is this the only 3 areas? where does forensics fit into this model?
With exception of Security+ are there any other certifications that provide a fundamental introduction?
Another query is to what 'Value' these certs hold? are some easier yet more recognised than others or approved my other certifications??

So the areas of security can be split into the following four areas:
Reverse engineering
Red team
Blue team
Management

Any More?
What does 'Reverse Engineering' actually involve?

Great so i could prob break this down into:

Foundation
Technical Administration (red/Blue team)
Management
Legal??

Does auditing come under management or would this justify its own category? What Certs would you be looking at for Auditing/Legal??

Simply put:
Red team = offensive, attacking team
Blue team = defensive team

Asking questions is one step on the path to knowledge. the other is google. (No, not yahoo, google.)

I think CIW Sec is a good one too, I was planning on knocking it out before the retirement next year, whether I do or not depends on my schedule.