HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 47 guests and 2 members online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow General Certificationarrow Securityarrow IS there any order to take certifications?
EH-Net
May 21, 2013, 01:43:09 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: IS there any order to take certifications?  (Read 1349 times)
0 Members and 1 Guest are viewing this topic.
sooriyan
Newbie
*
Offline Offline

Posts: 2


View Profile
« on: September 26, 2012, 10:28:39 PM »
Hi

I have 6+ years of exp in Microsoft development & have Masters in Computer Science. I would like to change my track to ethical hacking. Where do I need to start with? Can someone post list of certifications to be taken in the order (like foundation, basic, intermediate & advance). As far Microsoft, they MCP -> MCAD/MCPD -> MCA -> MCM in order starting from developer to Master. Is there something like that here?

 I would like to be a Pen tester/reverse engineer and having years of experience, I would like to be an independent consultant.
« Last Edit: September 26, 2012, 10:35:27 PM by sooriyan » Logged
unicityd
Full Member
***
Offline Offline

Posts: 156

Bored IT Manager, Crypto Nerd


View Profile WWW
« Reply #1 on: September 27, 2012, 03:06:14 AM »
Do you have any security background now?

With your background in CS and development, you can probably jump around a lot more than someone starting out in IT altogether, but you will need to learn basic networking, system administration and security. 

Sil provides a good outline of the networking and system administration skills you'll need here:

http://www.infiltrated.net/pentesting101.html

There is no set order to security certs and the certs you pursue depend on your ultimate goal.  The advice I'll give is pretty generic and safe, but others may advise you differently.  Choose your own path.

To start out with, you might want to pursue the Cisco Certified Network Associate (CCNA).  Networking is an essential skills if you want to do pen testing and going after the CCNA is a good place to start. 

You also need to be comfortable with Linux and Windows.  I don't think any of the certs would be worth your time, but you should make sure you're comfortable setting up a server, using the command line and troubleshooting basic problems.

The next cert I would pursue after the CCNA is the
Certified Ethicla Hacker (CEH).  It's the most widely recognized penetration testing cert.  The easiest thing to do is probably to take a course, but you can also self-study.  Other certs such as the Offensive Security Certified Professional (OSCP) get more respect on this board, and probably around pen testers in general, but they aren't as widely recognized by employers so they will probably be less helpful in getting a job.

After the CCNA and/or CEH, focus on getting a job in security or network administration.  You need experience to backup the certs.
 
After that, it depends on where you want to go.  If you're going to go into consulting or management, the CISSP is really important and you want want to get the CISA as well.  The CISSP catches a lot of flak, but mostly because it's oversold as an end-all-be-all cert; it's not.  It's a management-oriented cert with a broad scope but it's highly desired for managers and consultants.  If nothing else, get it to check the box.

If you want to stay technically focused, look at the SANS certifications.  The classes are expensive, but the classes and certs are pretty well respected and recognized by employers.  You might even want to skip the CEH and go straight for the GCIH and/or GPEN.  SANS even has a cert for reverse engineering malware, but your degree and any experience with reverse engineering will probably count for a lot more than the cert if that's where you want to go. 

Other certification options include the CCNA Security and/or CCNP.

To be very clear, this isn't the only path.  You may choose something very different depending on your interests.  Just try to have fun.
Logged
BS in IT, CISSP, MS in IS Management (in progress)
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.048 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.