.

Aspiring I.T professional

<<

dekx11

Newbie
Newbie

Posts: 3

Joined: Wed Apr 08, 2009 8:44 pm

Post Mon Jun 28, 2010 3:09 pm

Aspiring I.T professional

Hello all

I am an aspiring I.T professional who is currently a rising junior in college and is studying Communication with a minor in Computer Science and am looking to break into the security side of the I.T field. I was thus wondering if i am aiming to become a CISSP/LPT what certs would those with experience advise me to take before that. I am already studying for the CCNA exam and want to write it before the end of the year.

Thanks in advance for all your help.
<<

secureseve

User avatar

Jr. Member
Jr. Member

Posts: 79

Joined: Thu Apr 08, 2010 10:40 pm

Location: DMZ

Post Mon Jun 28, 2010 3:30 pm

Re: Aspiring I.T professional

Well, the CISSP is more of a Managerial Cert. The LPT is a continuation of the CEH which is more of a technical cert, more "hands on". If you want to actually be doing the pentesting/hacking/etc. then I would probably suggest, Security+ to get your foot in the door, then take either the CEH, eCPPT(from eLearnSecurity), or OSCP if you think you can handle them. The CCNA is a great start too.

IT Security is pretty broad. Any particular area in security you have in mind? Even the MCITP can be helpful if you want to do network security. MCITP + CCSP would be a pretty good combo for network administration security. So, all in all, the certs depend on what you want to do.
Last edited by secureseve on Mon Jun 28, 2010 3:34 pm, edited 1 time in total.
http://twitter.com/mikesantillana
eLearnSecurity Team Member.
<<

dekx11

Newbie
Newbie

Posts: 3

Joined: Wed Apr 08, 2009 8:44 pm

Post Mon Jun 28, 2010 3:41 pm

Re: Aspiring I.T professional

Thank you so much. That was a really quick reply and really helpful. I was wondering if you would also happen to know where I would be able to find more info on the different paths i can take in I.T security that would help me make a more concrete and informed decision because i definitely know i want to do something to do with organizing, maintaining and protecting computer systems from malicious hackers... I am just not 100% sure of the more technical terms used to categorize the different I.T security fields.
<<

Xen

User avatar

Sr. Member
Sr. Member

Posts: 386

Joined: Tue Feb 03, 2009 3:59 am

Post Mon Jun 28, 2010 4:11 pm

Re: Aspiring I.T professional

<<

secureseve

User avatar

Jr. Member
Jr. Member

Posts: 79

Joined: Thu Apr 08, 2010 10:40 pm

Location: DMZ

Post Mon Jun 28, 2010 4:12 pm

Re: Aspiring I.T professional

Well if you want to organize, maintain and prevent malicious attacks, then I would assume Network Administration would be up your alley. Not only would you setup your organizations infrastructure, but I'm sure you would want to make sure that infrastructure is secure!  ;D Note, I use the term Network Administration loosely here. If you wanted to be more specific, you could says System Administration and Network Administration (the former being and Admin of let's say a Windows Environment, adding users, setting up domains, etc. While the latter being an Admin of Routers, Switches, VPN and more network hardware). Certainly, many of the roles over lap and many employers prefer you know both, but just to be politically correct, they are two different roles.

Sorry if that confused you, but let's get back on track. Network administration seems to be up your alley, protecting from intruders. Now other aspects of security include Managerial roles (where the CISSP would benefit) where you understand security, but don't actually implement it. More or less write security policies that your organization would comply to. There are security researchers(mostly independent work, but some people get lucky and do it for a living) where you look for vulnerabilities and write exploits (for the good of course). You have penetration-tester(sometimes called ethical hackers) Where your services are used to actually attack an organization and provide a report where the weaknesses are. There are auditors (close to penetration testers, but not the same) Where they find ONLY vulnerabilities, but not actually attack them. (the debate as to which is better can be found elsewhere on the forum on the internet)

This is just the beginning, and there is a lot to learn. I hope this helps get you started. Good Luck!
http://twitter.com/mikesantillana
eLearnSecurity Team Member.
<<

dekx11

Newbie
Newbie

Posts: 3

Joined: Wed Apr 08, 2009 8:44 pm

Post Mon Jun 28, 2010 4:32 pm

Re: Aspiring I.T professional

Thank you very much it was very helpful. I think i have a better idea of what i'm aiming at and will do my research. Thanks again.

Return to General Certification

Who is online

Users browsing this forum: No registered users and 1 guest

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software