I've been in IT for about 25 yrs, from computer op to IT director, for the last 3 yrs. as an independent consultant in the healthcare world installing demographic network bridges in Dr. offices, clinics, hospitals. I have no certifications at this time, just an AA in Digital Electronics and pretty hefty experience.
My objective is to specialize in ethical hacker/penetration testing area for the purpose of adding to my consulting offering.
The problem I'm having is trying to work out which certification path to take, balancing a limited budget with getting the best knowledge base. There are a multitude of choices, - SANS, CompTIA, EC seem to be at the front. I'm very interested in hearing what some of you have to say. Thanks much for any help!