Permanent Link: [Article]-Insider`s View of Certified Expert Penetration Tester (CEPT)
When approaching security industry luminaries over the course of the last year about the CEPT certification, the typical first response I have received is usually quite blunt: "Oh great", "YET ANOTHER CERTIFICATION. Just what the security industry needs". And, to this point, I do have to agree, the security industry does not need another certification that:
- Tests a basic level of knowledge of INFOSEC subjects (ala the CISSP, SECURITY+, SCNP, ad infinitum.)
- Only tests the ability to regurgitate memorized information over a 2-6 hour time period
- Is easily compromised by cheaters downloading actual exam questions for $59.90 from "teh interwebs"
- Or, even worse, cheaters that cheat the exam cheater companies by pirating a copy of exam questions from bittorrent
All of this results in a large group of people that have achieved a specific certification, but, in reality, have no real understanding of the subjects tested OR, more importantly, the ability to perform job duties that the certification is CERTIFYING in the first place!
Add your thoughts about the CEPT certification and its examination process,
NOTE: In the interest of full disclosure, ChicagoCon, presented by The Ethical Hacker Network, is offering this course for the 2008s event. The IACRB is an educational sponsor and the InfoSec Institute is a Partner of the event.