My advise is to look at the different forums on this site, because as previously mentioned there are a lot of paths to take in Information Security. Some of the certifications are entry level, like the CompTIA certs and even some of the SANS classes, like SEC 401, others are intermediate C|EH, OSCP, and others still are more advanced like the CISSP, CISM, CISA.
A lot of certifications require you to meet prerequisites, which usually deal with experience or education.
I would recommend that you take some time, look through the forums. See what you may be interested in. There are areas like Incident Handling (cleaning and mitigating hacker attacks), Intrusion Detection (catching the hackers when they strike), Penetration testing/Ethical hacking (making sure the hackers can't get in), Malware (studying what tools hackers use and how to defend against them), etc. Just kick back and read, read, read. there is no easy path into information security.
Btw, welcome to the site.
CISSP, GCIH, GCIA, C|EH, Sec+, Net+, MCP