A few questions have popped up on EH-Net regarding this new cert from CompTIA. So I figured that I would get a jump on things and start the conversation with the source. If you have any other questions, please ask in this forum, and we'll get Carol to answer directly. Hope it helps.

Permanent link: [Article]-CASP – The Evolution of Technical Security Certifications?


Don

It could be.  Depends on what it's based off of.  The A+ cert is probably the most widly known.

What are the requirements for it?

I hate to sound negative because it does look like they're exploring expansion of their current space, but I recently interviewed for a position on my team and two of the candidates who were brought in had A+, Sec+, and Network+, yet were extremely unqualified. Perhaps it's just a caveat emptor for certifications altogether, but if someone has those and can't explain the OSI model (as I always ask in interviews) then clearly a goal has been missed. Perhaps prereqs should be higher?

I guy I worked with had a bunch of certs after his name and was going for his MBA.  But when it came to actually doing the work he fell short.  He either didn't share what he was doing or couldn't explain it.  I once asked him how his IIS 7 was since I had to rebuild a web server and migrate the old site pages off a recovered drive.  His answer was "what do you mean?"  So I repeated, and he came back with well "I have my MCSE so I know it."  I didn't get much help from him on the matter.  Not to mention it took him 3 days to set up watchguard SOHO devices.  Not 3 days total for all devices, but 3 days PER device.  Apparently he didn't realize you can dump the config files from a completed one and pump it down to new devices...  but I digress...

Yes people can have the cert and not know a damn thing about the material.  They knew enough to memorize the answers.  Wow though really?  OSI?  its like in every tech book out there no matter what the topic is!