Hi there!

First of all I must clarify that I´m from Spain so English is not my native language, sorry for all my little grammar mistakes 

Nowadays I´m working as a System Administrator but I actually don´t have that much knowledge in networks.

Also I´m studying a computer degree in university and I´m really interested in the field of security.

Next semester I will have networks fundamentals, object oriented programming fundamentals and assembler fundamentals so I think it will be quite interesting for me.

I wass guessing what will be the best way to start in this security world. I know there is a lot of certifications out there and one of the most reccomended to start is Security+ from Comptia from which I´ve gathered good material.

But I was also thinking about something more technical too, where I can try all the learned techniques and have some "fun" experimenting. I´ve read about the hacking dojo and the owner seems to be a very legit and capable guy, and the fee doesn´t seem abusive to me.

I´ve also taking a look at the CEH certificaction but it seems more a bunch of script kiddies tools. In the other hand, having a real mentor that can guide seems to be really helpful.

So, what do you think? Will be it ok to compaginate both or it will be better to start with the security+ and then move forward? I am afraid that I get bored learning too much technical stuff so I hope that I can fulfill the requirements in the hacking dojo.

Thank you a lot and sorry for my mistakes again, I´m trying really hard to learn english!

Regards!

Welcome to the club!

If you want something a bit more hands on, you can try your hands at OSCP from Offensive Security.  There are quite a few people here with this certification.  I am sure that they can tell you more.

http://www.offensive-security.com/information-security-certifications/

The Security+ is only in English if you want it in English. I don't know about the study guides.

http://www.comptia.org/certifications/listed/security.aspx

Languages: English, Spanish, German, Japanese, ChineseLanguages: English, Spanish, German, Japanese, Chinese

As for the OSCP / PWB. Even if you don't pass the exam, you'll learn a lot (or so others on the forum have said).

Personally, I'm going to read Professional Penetration Testing, Counter Hack Reloaded, and Hacking Exposed (either 1st or 6th edition) before even signing up for it. 2 of those books I'm already reading.

 (as a side note, yes I did buy the first edition of Hacking Exposed when it came out but never got to it).

I swear by the Security+ Get Certified Get ahead book too.

Thomas Wilhelm is a member of this board. I'm thinking about doing his 1R class in March. Wanted to this month, but had problems come up.

As for Counter Hack Reloaded, that author Ed Skoudis, is the person that writes the annual holiday challenge for EH.

Here's a slightly different perspective. A while back I was listening to an interview where the author was pointing out how education is not the be-all, end-all. His point was that it doesn't do any good to train a million workers to make widget A if there's no market for them. Jobs are created by demand. If everyone in the world wants a particular fancy cell phone, someone will start making that cell phone and the workers will be trained to do exactly that.

That perspective is a bit like the network industry. Each job will have its own set of software that the company uses, its own procedures & training requirements. So while you may not have the exact skill set required for the job, certs demonstrate an ability to learn & to show an acceptable level of proficiency.

So for me at least, I'll do whatever it takes to get the job as far as certs go. After you're hired is where the real learning begins.

That said, if you are lacking  some cert they would require, offer to take it soon after being hired.