Greetings,


I am currently working as a Network Engineer. I currently have A+/N+/S+ CCNA and CCNA:S and I am currently working on CCNP and CCNP:S. I have 5 years of IT experience (about a 8 months as a Network Engineer and 1 year as a Network Security Admin). I have some experience in windows and linux (very little) as well as BSD. I have worked with Cisco, sonicwall and windows firewalls as well as a many different switch and router brands. After I finish those two I want to start working on actual Infosec certifications. Basically somethings to round me out before I go full steam ahead into CCIE:S (which is changing this year so I want to wait until new material somes out).  I am quite interested in Wireless networking. CWNA/CWSP interest me quite a bit but I am having second thoughts due to the popularity level of the certs. I'd like to hit a SANS exam but I am somewhat broke. OSCP interest me as well and would be closer to reasonable for me to pay for but I would need to wait until I am done with school (so about October/November). I have the elearnsecurity course (student not pro). Linux+ interest me. CISSP is very popular around here (and everywhere else) but it does not interest me at all.
 Anyone have any other suggestions? For those who have made the leap from Network Engineering to Security what skillset did you have and what certs/study materials helped you build that skillset?

Do you want to pen test? I took the same road... you've got good ops experience which is nice but keep in mind if you're looking for a job, certain certs carry more notoriety than others. I'd recommend doing a "HR approved" one and then one that really interests you. OSCP is awesome for example, but no one you interview with may know what it is, sadly.

Sounds like you should pursue a security ops gig. You could do all the things you mentioned and even incident response/handling. I think SANS is your best course of action if you don't want the CISSP (I don't blame you). Maybe someone else has another idea but I'm just not sure of another place you can get ops style certs... cue another ehneter!

Maybe after I knock out some fun stuff (CWNA/CWSP maybe Linux+) I'll look at CISSP and then OSCP after that. That likely won't be this year but you never know.

Right. You can't defend against things you don't understand. It's important to understand offense and defense, regardless of which side of the fence you actually end up on.

OP, you really need to evaluate the ROI on some of these miscellaneous certifications. Is Linux+ going to make a difference for someone with multiple pro-level Cisco certs, or who someone is a CCIE and CISSP? I could see it being useful if you're aiming to have a CCNP five years from now, but you make it sound like those are just around the corner.

I'm speaking from experience. I've passed 30 exams, and after being cert-crazy for a few years, you realize how many were unnecessary. I'm glad I have the knowledge, but I think my money could have been better spent (like you, I fund these studies myself). It also stings now that renewal time is approaching. I'm probably going to let all certs that aren't Cisco (since you can renew them all with one exam) or security fall by the wayside. Since you have limited funds, I think you should go for a GCIA challenge instead of a handful of less prestigious credentials. Just my opinion.

You'll have to go with your gut on some of those. They're certainly not as recognized as CISSP, pro/expert Cisco, or GIAC certs in general, but they could certainly carry some weight with the appropriate crowd. Does your company do a lot with 802.11? You're not going to be covering cellular in CWNA or CWSP. Unless you have an immediate need for them, or expect to move into a new position where they would greatly benefit you, I wouldn't bother.

Also, CWSP was totally a let down on the offensive side (nothing against CWNP; my expectations were way off). It's gone through a revision since I took it (which does look somewhat better), but you spend a lot more time dealing with the various EAP flavors than anything related to attacks. It's important material if you're tasked with implementing secure wireless solutions, but it was too bland from my perspective. I'd recommend OSWP and/or GAWN as alternatives.

How about looking at this the other way around?

Find some jobs that interest you and work on the gaps in your skills / certs.  Its the most efficient way at landing the job you want.

You learn some RF basics, but it's not one where you learn about all wireless technologies (i.e. Bluetooth, ZigBee, RFID, etc.). Check out the exam objectives: http://www.cwnp.com/exams/pw0104_objectives.pdf


Yea, I'm going to challenge it within the next 2-3 months; it's one of my last GSE requirements. I got 79.33% on a practice test that was gifted to me last July. I didn't prepare or have any resources besides a few books I had nearby, so I *hopefully* won't have too much trouble with it. I plan on putting a lot of time into creating tcpdump, Scapy (not on the test, but a great learning tool), and Snort challenges and instructional demonstrations on my blog over the next couple of months.

It's definitely a pricey exam, but what can you do? Go big or go home