.

Security certifications

<<

asterix

Newbie
Newbie

Posts: 5

Joined: Tue Nov 02, 2010 8:10 am

Post Tue Nov 02, 2010 8:44 am

Security certifications

Hi Guys,
I have completed a degree in computer science and worked my way up through the ranks from helpdesk to 3rd line support. I have passed Security+ and other Cisco and Microsoft certifications although I'm now thinking of getting out of the technical game but unsure of what roles involving security are available! I'm not in a rush to get out of the technical role and looking to complete a few certs that will allow me to change over. I was thinking that the MCSA: Sec, MCSE: Sec & CCSA/CCSP are the big ones in technical security, and i should now be looking CEH, (ISC)2 and possibly MSC: Infosec. Really feel that i need some guidance in relation to this in respect to Recognition, time it takes to study, cost, prerequisites, required training programs etc.

Regards,
James
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Tue Nov 02, 2010 9:17 am

Re: Security certifications

you've got the Sec+, that's a start. However from there the question should be what aspect of Security do you want to do?

Red team (attack / pentest)
Blue team (defense)
Policy maker (management)

etc.
OSWP, Sec+
<<

asterix

Newbie
Newbie

Posts: 5

Joined: Tue Nov 02, 2010 8:10 am

Post Tue Nov 02, 2010 7:23 pm

Re: Security certifications

TBH im not overly sure as haven't had much experience in what's outside the IT support roles, what kinda certs would we be looking at in each of these areas?
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Tue Nov 02, 2010 11:46 pm

Re: Security certifications

Red team, CEH, anything Offensive Security, SANS certs
Blue team, firewall certs, incident handler certs , SANS certs
Management CISSP (from what I've heard).
OSWP, Sec+
<<

asterix

Newbie
Newbie

Posts: 5

Joined: Tue Nov 02, 2010 8:10 am

Post Wed Nov 03, 2010 8:00 am

Re: Security certifications

is this the only 3 areas? where does forensics fit into this model?
With exception of Security+ are there any other certifications that provide a fundamental introduction?
Another query is to what 'Value' these certs hold? are some easier yet more recognised than others or approved my other certifications??
<<

dante

User avatar

Jr. Member
Jr. Member

Posts: 58

Joined: Wed Jul 21, 2010 10:17 pm

Post Wed Nov 03, 2010 8:50 am

Re: Security certifications

Forensics(CHFI) will be under blue team.

One more to the list.
Reverse Engineering - CREA, GREM

Yes there are some certs(CEH) that are more recognized, easier to attain covers fundamentals but does not really say that you can do the job.
<<

asterix

Newbie
Newbie

Posts: 5

Joined: Tue Nov 02, 2010 8:10 am

Post Thu Nov 04, 2010 4:54 pm

Re: Security certifications

So the areas of security can be split into the following four areas:
Reverse engineering
Red team
Blue team
Management

Any More?
What does 'Reverse Engineering' actually involve?
<<

SephStorm

User avatar

Hero Member
Hero Member

Posts: 569

Joined: Sat Apr 17, 2010 12:12 pm

Post Thu Nov 04, 2010 6:08 pm

Re: Security certifications

For fundamentals you are pretty much looking at Sec+, then either CEH or SANS GSEC for a technical path. I would say that these certs are good foundations for red or blue teamers.

When it comes to management, you can add CISA and CISM to the list, but 9 out of 10 times, the CISSP is good enough.

As for Reverse Engineering, I assume we are talking about reverse engineering malware. Basically finding malicious code and tearing it apart to see how it was written, and possibly how to defend against it. Really, I would throw this under the blue team bus.
sectestanalysis.blogspot.com/‎
<<

asterix

Newbie
Newbie

Posts: 5

Joined: Tue Nov 02, 2010 8:10 am

Post Sat Nov 13, 2010 12:03 am

Re: Security certifications

Great so i could prob break this down into:

Foundation
Technical Administration (red/Blue team)
Management
Legal??

Does auditing come under management or would this justify its own category? What Certs would you be looking at for Auditing/Legal??
<<

eternal_security

Newbie
Newbie

Posts: 36

Joined: Thu Nov 13, 2008 10:35 am

Post Tue Nov 16, 2010 8:16 am

Re: Security certifications

asterix wrote:Great so i could prob break this down into:

Foundation
Technical Administration (red/Blue team)
Management
Legal??

Does auditing come under management or would this justify its own category? What Certs would you be looking at for Auditing/Legal??


Ok, call me stupid and flame me if you want....but what are red and blue team?  I've seen it in several posts, I've heard the terms, but I've never really known what they are.

Thanks!

eternal_security
<<

UNIX

User avatar

Hero Member
Hero Member

Posts: 1244

Joined: Mon Apr 28, 2008 9:20 am

Post Tue Nov 16, 2010 9:43 am

Re: Security certifications

Simply put:
Red team = offensive, attacking team
Blue team = defensive team
<<

eternal_security

Newbie
Newbie

Posts: 36

Joined: Thu Nov 13, 2008 10:35 am

Post Mon Nov 29, 2010 10:24 am

Re: Security certifications

awesec wrote:Simply put:
Red team = offensive, attacking team
Blue team = defensive team


Thanks awesec.  I know it probably seemed stupid, and I had an idea that they correlated to offensive/defensive teams somehow, but I never really knew.  (Thanks also for not flaming me  ;)  ).

Kind regards,
eternal_security
<<

SephStorm

User avatar

Hero Member
Hero Member

Posts: 569

Joined: Sat Apr 17, 2010 12:12 pm

Post Wed Dec 01, 2010 9:14 am

Re: Security certifications

Asking questions is one step on the path to knowledge. the other is google. ;) (No, not yahoo, google.)
sectestanalysis.blogspot.com/‎
<<

Solinus

Newbie
Newbie

Posts: 31

Joined: Mon Sep 03, 2007 6:33 pm

Location: Cape Cod

Post Thu Dec 02, 2010 8:33 am

Re: Security certifications

SephStorm wrote:Asking questions is one step on the path to knowledge. the other is google. ;) (No, not yahoo, google.)


Amen!


....I think that the CIW sec analyst is another good, basic foundation cert
Kerry
MCITP:EA | MCTS(x5) | MCSA+ | MCSE+ | Security + | CCNA | WCSP |
DSCE | PCT |CIW Security Analyst | CSSA
<<

SephStorm

User avatar

Hero Member
Hero Member

Posts: 569

Joined: Sat Apr 17, 2010 12:12 pm

Post Thu Dec 02, 2010 2:45 pm

Re: Security certifications

I think CIW Sec is a good one too, I was planning on knocking it out before the retirement next year, whether I do or not depends on my schedule.
sectestanalysis.blogspot.com/‎
Next

Return to General Certification

Who is online

Users browsing this forum: No registered users and 2 guests

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software